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DETAILED ACTION 

1 . A request for continued examination under 37 CFR 1.114, including the 
fee set forth in 37 CFR 1 .17(e), was filed in this application after final rejection. 
Since this application is eligible for continued examination under 37 CFR 1.114, 
and the fee set forth in 37 CFR 1 .1 7(e) has been timely paid, the finality of the 
previous Office action has been withdrawn pursuant to 37 CFR 1 .1 14. 
Applicant's submission filed on June 10, 2008 has been entered. 

2. Applicant's amendment dated June 1 0, 2008, responding to the Office 
action mailed January 10, 2008 provided in the rejection of claims 1-67, wherein 
claims 1-2, 5-7, 11-25, 28-41, 44-48, 50, 52, 54-63, and 65-67 are amended, and 
claim 8 was cancelled. 

The status of claims 48 was inadvertently listed as "original". It should be 
corrected as "currently amended" instead. 

Claims 1-7 and 9-67 remain pending in the application and which have 
been fully considered by the examiner. 

Applicant's arguments with respect to claims currently amended have been fully 
considered but are moot in view of the new grounds of rejection - see Bennett et al. - art 
made of record, as applied hereto. 
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Claim Rejections - 35 USC § 103(a) 

The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as 
set forth in section 1 02 of this title, if the differences between the subject matter sought to be 
patented and the prior art are such that the subject matter as a whole would have been obvious at 
the time the invention was made to a person having ordinary skill in the art to which said subject 
matter pertains. Patentability shall not be negatived by the manner in which the invention was 
made. 

3. Claims 1-5, 7, and 17-21 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over John Scott Robin (Analyzing the Intel Pentium™ 's Capability 
to Support a Secure Virtual Machine Monitor, pp. 1-98, Sep., 1999, Naval 
Postgraduate School, Monterey, California) (hereinafter 'Robin') in view of 
Devine et al. (Pat. No. 6,397,242 B1) (hereinafter 'Devine') and Bennett et al. 
(Pat. No. 7,127,548 B2) (hereinafter 'Bennett' - art made of record) 

4. As to claim 1 (Currently Amended), Robin discloses a method for 
improving processor virtual ization in x86™ processor architectures and their 
equivalents, including but not limited to the IA32™ architecture, said method 
comprising removing, replacing, or supplementing one or more predefined 
instructions in a guest operating system that adversely affect virtualization for a 
hybrid virtual machine operating on an x86 processor (e.g., Abstract, Lines 1-2 - 
the problem of implementing secure virtual machine monitors (VMM) on the Intel 
Pentium™ architecture, 6-8 - several techniques are presented that allow the 
Intel™ architecture to support a "virtual VMM"; Sec. 2 of Characteristic and 
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Layers of a VMM, 3 rd Para. - instructions which can not be executed directly by 
the real processor are interpreted by the VMM) 

Further, Robin discloses the problem of implementing secure virtual 
machine monitors (VMM) on the Intel Pentium™ architecture and techniques are 
presented that allow the Intel™ architecture to support a "virtual VMM" (e.g., 
Abstract), but does not explicitly disclose synthetic instructions that cause at least 
one exception to be trappable by a virtualization layer, wherein said synthetic 
instructions are illegal to said architecture. 

However, in an analogous art of Virtualization System Including a Virtual 
Machine Monitor for a Computer with a Segmented Architecture, Devine 
discloses synthetic instructions (e.g., Abstract, ... Connected to the VMM for 
running a sequence of VM instructions ...) that cause at least one exception 
(e.g., Col. 8, Lines 35-43 - ... Can be changed only by protected mechanisms, 
either instructions or exceptions : Col. 12, Lines 57-60 - ... if the execution of the 
instruction leads to an exception of the virtual machine Col. 14, Lines 57-60 - 
. . . requirements of the virtual machine monitor .... is the ability to handle traps 
( exceptions and interrupts) transparently to the execution of the virtual machine) 
to be trappable (e.g., Col. 2, Lines 2-4 - the VMM thus need only to correctly 
emulate the traps to allow the correct execution of the operating system in the 
virtual machine; Col. 4, Lines 52-54 - ... the VMM must handle only the traps that 
result from attempts by the virtual machine to issue privileged instructions) by a 
virtualization layer (e.g., Abstract - ... the invention provides a virtual machine 
monitor ( VMM ) and a virtual machine (VM) that has least one virtual processor 
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and is operatively connected to the VMM for running a sequence of VM 
instructions , which are either directly executable or non-directly executable ), 
wherein said synthetic instructions are illegal to said architecture (e.g., Col. 7, 
Lines 9-13 - the VMM then operates within the protected operation mode and 
uses binary translation to execute VM instructions whenever the real and system 
management operation modes of the processor are to be virtualized ) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Devine into the 
Robin's system to further provide synthetic instructions that cause at least one 
exception to be trappable by a virtualization layer, wherein said synthetic 
instructions are illegal to said architecture in the Robin system. 

The motivation is that it would further enhance the Robin's system by 
taking, advancing and/or incorporating Devine's system which offers significant 
advantages that the invention is particularly well-adapted for virtualizing 
computers in which the hardware processor has an Intel x86™ architecture as 
once suggested by Devine (e.g., Abstract) 

Furthermore, Devine discloses the invention is particularly well-adapted 
for virtualizing computers in which the hardware processor has an Intel x86 
architecture (e.g., Abstract), but does not explicitly disclose using at least one of 
said synthetic instructions to enable direct execution on a physical processor of 
instructions issued by said guest operation system; wherein said at least one of 
said synthetic instructions is executed from within guest kernel code. 
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However, in an analogous art of Control Register Access Virtualization 
Performance Improvement in the Virtual-Machine Architecture, Bennett discloses 
using at least one of said synthetic instructions to enable direct execution on a 
physical processor of instructions issued by said guest operation system (e.g., 
Fig. 1 - elements 1 04 - OS #1 ; 1 1 2 - Virtual-Machine Monitor (VMM); 116 — 
Bare Platform Hardware; 122 - VMCS; 1 18 - Processor; Col. 3, Lines 54-56 - 
The VMM 112 facilitates functionality desired by quest software while retaining 
ultimate control over privileged hardware resources within the platform hardware 
116; Col. 4, Lines 1-3 - ... the transfer of control from guest software to VMM is 
dictated by control bit settings in a virtual machine control structure (VMCS) 122); 
wherein said at least one of said synthetic instructions is executed from within 
guest kernel code (e.g., Fig. 1 - element 104 - OS #1; Col. 3, Lines 33-40 - ... 
emulates the functionality desired by quest software ...; Lines 54-67 - ... which 
then decides whether to perform a requested operation (e.g., emulate it for the 
quest software , proxy the operation directly to the platform hardware 116 etc. ...) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Bennett into the 
Robin-Devine's system to further provide using at least one of said synthetic 
instructions to enable direct execution on a physical processor of instructions 
issued by said guest operation system; wherein said at least one of said 
synthetic instructions is executed from within guest kernel code in the Robin- 
Devine system. 
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The motivation is that it would further enhance the Robin-Devine's system 
by taking, advancing and/or incorporating the Bennett's system which offers 
significant advantages for resolving significant performance overheads for 
virtualization of control register accesses as once suggested by Bennett (e.g., 
Col. 1, Lines 45-60) 

5. As to claim 2 (original) (incorporating the rejection in claim 1), Robin 
discloses the method wherein said one or more predefined instructions, include a 
member of the following group of instructions: PUSH CS, PUSH SS (e.g., P. 24, 
Sec. 3 - PUSH Instruction, Lines 1-5 - this can not be allowed because bits 0 
and 1 of the CS and SS register contain the CPL of the current executing task), 
MOV from SS (e.g., P. 26, Sec. 5 - STR Instruction, 2 nd Para. - this is a problem 
because the CS and SS registers both contain the CPL in bits 0 and 1 . therefore, 
a task could store the CS or SS in a general-purpose register and examine the 
contents of that register to find that is not operating at the correct privilege level), 
CALLF (e.g., P. 24, Sec. 4 - CALL, JMP, INT n, RET Instructions, 1 st Para - task 
switches and far calls to different privilege levels are problems because they 
involve the CPL, DPL, and RPL of the Intel™ protection system), VERR, VERW, 
and LAR (e.g., P. 23, Sec. 1 - LAR, LSL, VERR, VERW Instructions, the LAR 
instruction loads access rights from a segment descriptor into a general purpose 
register; the VERR and VERW instructions verify whether a code or data 
segment is readable or writable from the current privilege level. The problem with 
these instructions is that they all perform the following check during their 
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execution: (CPL > DPL) or (RPL > DPL); this conditional checks to ensure that 
the current privilege level and the requested privilege level are both greater than 
the descriptor privilege level. This is a problem because a VM normally does not 
execute at the highest CPL) 

6. As to claim 3 (original) (incorporating the rejection in claim 1), Robin 
discloses the method wherein an instruction that adversely affects virtual ization 
on an x86 processor is either replaced with or supplemented by a synthetic 
instruction that causes an exception in the x86 processor that is then trapped by 
a virtual machine running on said x86 processor for processing by said virtual 
machine (i.e. P. 5, Sec. 3 - Logical VMM Modules - A VMM normally has three 
generic types of modules: dispatcher, allocator, and interpreter; A jump to the 
dispatcher is placed in every location to which the machine traps. The dispatcher 
then decides which of its modules to call when the machine traps; For example, if 
a VM tries to execute a privileged instruction that would change the resources of 
the VM's environment, the VM will trap to the VMM dispatcher. The dispatcher 
will handle the trap by invoking the allocator that performs the requested 
resource allocation according to VMM policy. The final module type is an 
interpreter. Each privileged instruction will have an interpreter module that is 
called by the dispatcher to simulate the effect of the instruction that caused the 
trap) 
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7. As to claim 4 (original) (incorporating the rejection in claim 3), Robin 
discloses the method wherein, for a first virtual machine running on a second 
virtual machine, an instruction that is either replaced with or supplemented by a 
synthetic instruction to cause an exception in the x86 processor that is then 
trapped by said first virtual machine running on said x86 processor for processing 
by said virtual machine by effectively by-passing said second virtual machine (i.e. 
P. 5, Sec. 2 - Characteristic and Layers of a VMM, 4 th Para. - some virtual 
machines exhibit the recursion property. This means that is possible to run a 
VMM inside of a VM, producing a new level of virtual machines; P. 5, Sec. 3 - 
Logical VMM Modules - A VMM normally has three generic types of modules: 
dispatcher, allocator, and interpreter; A jump to the dispatcher is placed in every 
location to which the machine traps. The dispatcher then decides which of its 
modules to call when the machine traps; For example, if a VM tries to execute a 
privileged instruction that would change the resources of the VM's environment, 
the VM will trap to the VMM dispatcher. The dispatcher will handle the trap by 
invoking the allocator that performs the requested resource allocation according 
to VMM policy. The final module type is an interpreter. Each privileged instruction 
will have an interpreter module that is called by the dispatcher to simulate the 
effect of the instruction that caused the trap) 

8. As to claim 5 (Currently Amended) (incorporating the rejection in claim 3), 
Devine discloses the method wherein at least one synthetic instruction of said 
synthetic instruction is usable in both a user mode and a privileged mode (e.g., 
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Col. 1 , Line 64 through Col. 2, Line 4; Col. 4, Lines 44-54; Col. 5, Lines 31 -41 ; 
Col. 6, Line 52 through Col. 7, Line 5; Col. 3, Lines 38-45; Col. 18, Lines 10-14) 

9. As to claim 7 (Currently Amended) (incorporating the rejection in claim 3), 
Devine discloses the method wherein at least one synthetic instruction of said 
synthetic instruction is an instruction for disabling direct execution (e.g., Abstract, 
Lines 7-14 - a direct execution sub-system, as well as a sub-system that 
determines if VM instructions must be executed using binary translation, or if they 
can be executed using direct execution Shadow descriptor tables in the VMM; 
Fig. 1, elements of "Direct Execution", "Execution Mode Decision"; Col. 2, Lines 
59-67 - it allowed virtual machine monitors to use a technique know as "direct 
execution" which simplifies the implementation of the monitor and improves 
performance; Col. 4, Lines 44-63; Col. 5, Lines 5-9 - what is needed is therefore 
a VMM that is able to function with both the speed of a direct-execution system 
and the flexibility of a binary-translation system; Col. 5, Lines 20-30; Col. 7, Lines 
13-17; Col. 8, Lines 26-34; Fig. 7; Col. 7, Lines 51-57; Fig. 2; Col. 10, Line 16 
through Col. 11, Line 27) 

10. As to claim 17 (Currently Amended) (incorporating the rejection in claim 
3), Devine discloses the method wherein an instruction that modifies a descriptor 
table entry in the guest operating system is replaced with a synthetic instruction 
that updates the descriptor table entry, avoiding overheads associated with 
maintaining shadow descriptor tables (e.g., Abstract, Lines 7-14 - a direct 
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execution sub-system, as well as a sub-system that determines if VM instructions 
must be executed using binary translation, or if they can be executed using direct 
execution shadow descriptor tables in the VMM, corresponding to VM descriptor 
tables...; Col. 5, Lines 46-59 - the VMM includes VMM descriptor tables, 
including shadow descriptors, that correspond to predetermined ones of the VM 
descriptions tables; Col. 6, Lines 3-6 - the VMM thereby also uses binary 
translation using this cached entry until the processor segment is subsequently 
loaded with a VMM descriptor that is a shadow descriptor; Col. 5, Lines 46-59 - 
the VMM also includes a segment tracking sub-system/module that compares 
the shadow descriptors with their corresponding VM segment descriptors, and 
....; Col. 7, Lines 23-27 - the segment tracking sub-system then includes means 
for indicating to the VMM, on selected ones of the plurality of hardware 
processors, any lack of correspondence between the shadow descriptor tables 
and their corresponding VM descriptor tables; Fig. 6 - illustrating shadow 
descriptor tables used in the VMM according to the invention; Col. 14, Lines 65- 
67 - the manner in which the invention overcomes this problem is through the 
use of shadow descriptor tables; Col. 16, Lines 33-63 - the virtual machine may 
set its GDT to the maximal size supported by the hardware, or to a size that 
exceeds the space reserved by the VMM for GDT shadow descriptors; Col. 17, 
Lines 39-60; Col. 18, Lines 54-57 - with direct execution, the virtual machine 
directly assigns segment registers; however, rather than using the virtual 
machine's tables, the hardware looks at the VMM's shadow tables; Col. 25, Lines 
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9-13 - for each virtual processor, the VMM will then maintain a separate set of 
global and local shadow descriptor entries; Col. 26, Lines 3-11, 18-27, 41-47) 

11. As to claim 18 (Currently Amended) (incorporating the rejection in claim 
3), Robin discloses the method wherein an SGDT instruction in the guest 
operating system is replaced with a synthetic instruction that stores a current 
GDT base and length to EAX (e.g., P. 19-20, Sec. 1 - SGDT, SIDT, and SLDT 
Instructions, 1 st Para. - 2 nd Para., the GDT and LDT contain segment descriptors 
that provide the base address, access rights, type, length, and usage information 
for each segment; the interrupt descriptor table (IDT) is similar to the GDT and 
LDT, but it holds gate descriptors that provide access to interrupt and exception 
handlers; All three of these instructions (SGDT, SLDT, SIDT) store a special 
register value into some location. The SGDT instruction stores the contents of 
GDTR in a 6-byte memory location; the SLDT instruction stores the segment 
selector from the LDTR in a 16- or 32-bit general-purpose register or memory 
location; The SIDT instruction stores the contents of IDTR in a 6-byte memory 
location; these instructions are normally only used by operating systems but are 
not privileged in the Intel™ architecture. Since the Intel™ processor only has one 
LDTR, IDTR, and GDTR, a problem arises when multiple operating systems try 
to use the same registers. If an OS in a VM uses SGDT, SLDT, or SIDT to 
reference the contents of the IDTR, LDTR, or GDTR, the register contents that 
are applicable to the host OS or Type I VMM will be given. This could cause a 
problem if an operating system of a virtual machine (VMOS) tries to use these 
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values for its own operations since they are what the VMOS expect. Therefore, a 
Type 1 VMM or Type II VMM must provide each VM with its own virtual set of 
IDTR, LDTR, and GDTR registers) 

12. As to claim 19 (Currently Amended) (incorporating the rejection in claim 
3), Robin discloses the method wherein a SLDT instruction in the guest operating 
system is replaced with a synthetic instruction that stores the current LDT 
selector to EAX (e.g., P. 19-20, Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st 
Para. - 2 nd Para., the GDT and LDT contain segment descriptors that provide the 
base address, access rights, type, length, and usage information for each 
segment; the interrupt descriptor table (IDT) is similar to the GDT and LDT, but it 
holds gate descriptors that provide access to interrupt and exception handlers; 
All three of these instructions (SGDT, SLDT, SIDT) store a special register value 
into some location. The SGDT instruction stores the contents of GDTR in a 6- 
byte memory location; the SLDT instruction stores the segment selector from the 
LDTR in a 16- or 32-bit general-purpose register or memory location; The SIDT 
instruction stores the contents of IDTR in a 6-byte memory location; these 
instructions are normally only used by operating systems but are not privileged in 
the Intel™ architecture. Since the Intel™ processor only has one LDTR, IDTR, 
and GDTR, a problem arises when multiple operating systems try to use the 
same registers. If an OS in a VM uses SGDT, SLDT, or SIDT to reference the 
contents of the IDTR, LDTR, or GDTR, the register contents that are applicable 
to the host OS or Type I VMM will be given. This could cause a problem if an 
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operating system of a virtual machine (VMOS) tries to use these values for its 
own operations since they are what the VMOS expect. Therefore, a Type 1 VMM 
or Type II VMM must provide each VM with its own virtual set of IDTR, LDTR, 
and GDTR registers) 

13. As to claim 20 (Currently Amended) (incorporating the rejection in claim 
3), Robin discloses the method wherein a SIDT instruction in the guest operating 
system is replaced with a synthetic instruction that stores the current IDT base 
and length to EAX (e.g., P. 19-20, Sec. 1 - SGDT, SIDT, and SLDT Instructions, 
1 st Para. - 2 nd Para., the GDT and LDT contain segment descriptors that provide 
the base address, access rights, type, length, and usage information for each 
segment; the interrupt descriptor table (IDT) is similar to the GDT and LDT, but it 
holds gate descriptors that provide access to interrupt and exception handlers; 
All three of these instructions (SGDT, SLDT, SIDT) store a special register value 
into some location. The SGDT instruction stores the contents of GDTR in a 6- 
byte memory location; the SLDT instruction stores the segment selector from the 
LDTR in a 16- or 32-bit general-purpose register or memory location; The SIDT 
instruction stores the contents of IDTR in a 6-byte memory location; these 
instructions are normally only used by operating systems but are not privileged in 
the Intel™ architecture. Since the Intel™ processor only has one LDTR, IDTR, 
and GDTR, a problem arises when multiple operating systems try to use the 
same registers. If an OS in a VM uses SGDT, SLDT, or SIDT to reference the 
contents of the IDTR, LDTR, or GDTR, the register contents that are applicable 
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to the host OS or Type I VMM will be given. This could cause a problem if an 
operating system of a virtual machine (VMOS) tries to use these values for its 
own operations since they are what the VMOS expect. Therefore, a Type 1 VMM 
or Type II VMM must provide each VM with its own virtual set of IDTR, LDTR, 
and GDTR registers) 

14. As to claim 21 (Currently Amended) (incorporating the rejection in claim 
3), Robin discloses the method wherein a STR instruction in the guest operating 
system is replaced with a synthetic instruction that stores the current TR selector 
to EAX (e.g., P. 26, Sec. 5 - STR Instruction, 1 st Para. - this instruction prevents 
virtualization because it allows a task to examine its requested privilege level 
(RPL). Every segment selector contains an index into the GDT or LDT, a table 
indicator, and an RPL. The RPL is represented by bit 0 and bit 1 of the segment 
selectors. This is a problem because a VM does not execute at the highest CPL 
or RPL (RPL = 0), but a RPL = 3. However, most operating systems assume that 
they are operating at the highest privilege level and that they can access any 
segment descriptor. Therefore, if a VM running at a CPL and RPL of 3 uses the 
STR to store the contents of the task register and then examines the information, 
it will find that it is not running at the privilege level at which it expects to run) 

1 5. Claims 29, 34-37, 44, 52, and 57-60 are rejected under 35 U.S.C. 1 03(a) 
as being unpatentable over Robin in view of Bennett 
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16. As to claim 29 (Currently Amended), Robin discloses a system for 
processing synthetic instructions on x86 processor architectures and their 
equivalents, including but not limited to the IA32 architecture, said system 
comprising: 

• a subsystem for trapping said synthetic instructions issued by a guest 
operating system after said synthetic instructions cause an exception 
in the x86 processor; and a subsystem for processing said synthetic 
instructions for the guest operating system (i.e. P. 5, Sec. 3 - Logical 
VMM Modules - A VMM normally has three generic types of modules: 
dispatcher, allocator, and interpreter; A jump to the dispatcher is 
placed in every location to which the machine traps. The dispatcher 
then decides which of its modules to call when the machine traps; For 
example, if a VM tries to execute a privileged instruction that would 
change the resources of the VM's environment, the VM will trap to the 
VMM dispatcher. The dispatcher will handle the trap by invoking the 
allocator that performs the requested resource allocation according to 
VMM policy. The final module type is an interpreter. Each privileged 
instruction will have an interpreter module that is called by the 
dispatcher to simulate the effect of the instruction that caused the trap) 
Further, Robin discloses the problem of implementing secure virtual 
machine monitors (VMM) on the Intel Pentium™ architecture and techniques are 
presented that allow the Intel™ architecture to support a "virtual VMM" (e.g., 
Abstract), but does not explicitly disclose wherein at least one synthetic 
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instruction of said synthetic instructions is configured to enable direct execution 
within ring 0 layer of privilege. 

However, in an analogous art of Control Register Access Virtualization 
Performance Improvement in the Virtual-Machine Architecture, Bennett discloses 
wherein at least one synthetic instruction of said synthetic instructions is 
configured to enable direct execution within ring 0 layer of privilege (e.g., Col. 4, 
Lines 27-34 - ... as virtualization events ... may result in its access of certain 
privileged hardware resources (e.g., a control register or an IO port) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Bennett into the 
Robin's system to further provide wherein at least one synthetic instruction of 
said synthetic instructions is configured to enable direct execution within ring 0 
layer of privilege in the Robin system. 

The motivation is that it would further enhance the Robin's system by 
taking, advancing and/or incorporating the Bennett's system which offers 
significant advantages for resolving significant performance overheads for 
virtualization of control register accesses as once suggested by Bennett (e.g., 
Col. 1, Lines 45-60) 

17. As to claim 34 (Currently Amended) (incorporating the rejection in claim 
29), Robin discloses the system further comprising a subsystem for processing a 
synthetic instruction for storing the current GDT base and length to EAX (e.g., P. 
19-20, Sec. 1 -SGDT, SIDT, and SLDT Instructions, 1 st Para. -2 nd Para., the 
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GDT and LDT contain segment descriptors that provide the base address, 
access rights, type, length, and usage information for each segment; the interrupt 
descriptor table (IDT) is similar to the GDT and LDT, but it holds gate descriptors 
that provide access to interrupt and exception handlers; All three of these 
instructions (SGDT, SLDT, SIDT) store a special register value into some 
location. The SGDT instruction stores the contents of GDTR in a 6-byte memory 
location; the SLDT instruction stores the segment selector from the LDTR in a 
16- or 32-bit general-purpose register or memory location; The SIDT instruction 
stores the contents of IDTR in a 6-byte memory location; these instructions are 
normally only used by operating systems but are not privileged in the Intel™ 
architecture. Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a 
problem arises when multiple operating systems try to use the same registers. If 
an OS in a VM uses SGDT, SLDT, or SIDT to reference the contents of the 
IDTR, LDTR, or GDTR, the register contents that are applicable to the host OS or 
Type I VMM will be given. This could cause a problem if an operating system of a 
virtual machine (VMOS) tries to use these values for its own operations since 
they are what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must 
provide each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

18. As to claim 35 (Currently Amended) (incorporating the rejection in claim 
29), Robin discloses the system further comprising a subsystem for processing a 
synthetic instruction for storing the current LDT selector to EAX (e.g., P. 19-20, 
Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. - 2 nd Para., the GDT and 
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LDT contain segment descriptors that provide the base address, access rights, 
type, length, and usage information for each segment; the interrupt descriptor 
table (IDT) is similar to the GDT and LDT, but it holds gate descriptors that 
provide access to interrupt and exception handlers; All three of these instructions 
(SGDT, SLDT, SIDT) store a special register value into some location. The 
SGDT instruction stores the contents of GDTR in a 6-byte memory location; the 
SLDT instruction stores the segment selector from the LDTR in a 16- or 32-bit 
general-purpose register or memory location; The SIDT instruction stores the 
contents of IDTR in a 6-byte memory location; these instructions are normally 
only used by operating systems but are not privileged in the Intel™ architecture. 
Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a problem 
arises when multiple operating systems try to use the same registers. If an OS in 
a VM uses SGDT, SLDT, or SIDT to reference the contents of the IDTR, LDTR, 
or GDTR, the register contents that are applicable to the host OS or Type I VMM 
will be given. This could cause a problem if an operating system of a virtual 
machine (VMOS) tries to use these values for its own operations since they are 
what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must provide 
each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

19. As to claim 36 (Currently Amended) (incorporating the rejection in claim 
29), Robin discloses the system further comprising a subsystem for processing a 
synthetic instruction for storing the current IDT base and length to EAX (e.g., P. 
19-20, Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. -2 nd Para., the 
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GDT and LDT contain segment descriptors that provide the base address, 
access rights, type, length, and usage information for each segment; the interrupt 
descriptor table (IDT) is similar to the GDT and LDT, but it holds gate descriptors 
that provide access to interrupt and exception handlers; All three of these 
instructions (SGDT, SLDT, SIDT) store a special register value into some 
location. The SGDT instruction stores the contents of GDTR in a 6-byte memory 
location; the SLDT instruction stores the segment selector from the LDTR in a 
16- or 32-bit general-purpose register or memory location; The SIDT instruction 
stores the contents of IDTR in a 6-byte memory location; these instructions are 
normally only used by operating systems but are not privileged in the Intel™ 
architecture. Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a 
problem arises when multiple operating systems try to use the same registers. If 
an OS in a VM uses SGDT, SLDT, or SIDT to reference the contents of the 
IDTR, LDTR, or GDTR, the register contents that are applicable to the host OS or 
Type I VMM will be given. This could cause a problem if an operating system of a 
virtual machine (VMOS) tries to use these values for its own operations since 
they are what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must 
provide each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

20. As to claim 37 (Currently Amended) (incorporating the rejection in claim 
29), Robin discloses the system further comprising a subsystem for processing a 
synthetic instruction for storing the current TR selector to EAX (e.g., P. 26, Sec. 5 
- STR Instruction, 1 st Para. - this instruction prevents virtualization because it 
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allows a task to examine its requested privilege level (RPL). Every segment 
selector contains an index into the GDT or LDT, a table indicator, and an RPL. 
The RPL is represented by bit 0 and bit 1 of the segment selectors. This is a 
problem because a VM does not execute at the highest CPL or RPL (RPL = 0), 
but a RPL = 3. However, most operating systems assume that they are operating 
at the highest privilege level and that they can access any segment descriptor. 
Therefore, if a VM running at a CPL and RPL of 3 uses the STR to store the 
contents of the task register and then examines the information, it will find that it 
is not running at the privilege level at which it expects to run) 

21 . As to claim 44 (Currently Amended) (incorporating the rejection in claim 
41 ), please refer to claim 7 as set forth accordingly. 

22. As to claim 52 (Currently Amended), Robin discloses a computer- 
readable medium comprising computer-readable instructions for improving 
processor virtual ization in x86 processor architectures and their equivalents, 
including but not limited to the IA32 architecture, said computer-readable 
instructions comprising: 

• At least one synthetic instruction that causes an exception in the x86 
processor that is then trapped by a virtual machine monitor running on 
said x86 processor for processing by said virtual machine monitor (i.e. 
P. 5, Sec. 3 - Logical VMM Modules - A VMM normally has three 
generic types of modules: dispatcher, allocator, and interpreter; A jump 
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to the dispatcher is placed in every location to which the machine 
traps. The dispatcher then decides which of its modules to call when 
the machine traps; For example, if a VM tries to execute a privileged 
instruction that would change the resources of the VM's environment, 
the VM will trap to the VMM dispatcher. The dispatcher will handle the 
trap by invoking the allocator that performs the requested resource 
allocation according to VMM policy. The final module type is an 
interpreter. Each privileged instruction will have an interpreter module 
that is called by the dispatcher to simulate the effect of the instruction 
that caused the trap) 
Further, Robin discloses the problem of implementing secure virtual 
machine monitors (VMM) on the Intel Pentium™ architecture and techniques are 
presented that allow the Intel™ architecture to support a "virtual VMM" (e.g., 
Abstract), but does not explicitly disclose wherein said at least one synthetic 
instruction is illegal to said processor architecture; and-wherein said exception is 
a result of the execution of higher privileged code at a lower privileged level. 

However, in an analogous art of Control Register Access Virtualization 
Performance Improvement in the Virtual-Machine Architecture, Bennett discloses 
wherein said at least one synthetic instruction is illegal to said processor 
architecture; and-wherein said exception is a result of the execution of higher 
privileged code at a lower privileged level (e.g., Col. 4, Lines 27-34 - ... as 
virtualization events ... may result in its access of certain privileged hardware 
resources (e.g., a control register or an IO port) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Bennett into the 
Robin's system to further provide wherein said at least one synthetic instruction 
is illegal to said processor architecture; and-wherein said exception is a result of 
the execution of higher privileged code at a lower privileged level in the Robin 
system. 

The motivation is that it would further enhance the Robin's system by 
taking, advancing and/or incorporating the Bennett's system which offers 
significant advantages for resolving significant performance overheads for 
virtualization of control register accesses as once suggested by Bennett (e.g., 
Col. 1, Lines 45-60) 

23. As to claim 57 (Currently Amended) (incorporating the rejection in claim 
52), Robin discloses the computer-readable instructions further comprising a 
synthetic instruction that stores the current GDT base and length to EAX (e.g., P. 
19-20, Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. -2 nd Para., the 
GDT and LDT contain segment descriptors that provide the base address, 
access rights, type, length, and usage information for each segment; the interrupt 
descriptor table (IDT) is similar to the GDT and LDT, but it holds gate descriptors 
that provide access to interrupt and exception handlers; All three of these 
instructions (SGDT, SLDT, SIDT) store a special register value into some 
location. The SGDT instruction stores the contents of GDTR in a 6-byte memory 
location; the SLDT instruction stores the segment selector from the LDTR in a 
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16- or 32-bit general-purpose register or memory location; The SIDT instruction 
stores the contents of IDTR in a 6-byte memory location; these instructions are 
normally only used by operating systems but are not privileged in the Intel™ 
architecture. Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a 
problem arises when multiple operating systems try to use the same registers. If 
an OS in a VM uses SGDT, SLDT, or SIDT to reference the contents of the 
IDTR, LDTR, or GDTR, the register contents that are applicable to the host OS or 
Type I VMM will be given. This could cause a problem if an operating system of a 
virtual machine (VMOS) tries to use these values for its own operations since 
they are what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must 
provide each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

24. As to claim 58 (Currently Amended) (incorporating the rejection in claim 
52), Robin discloses the computer-readable instructions further comprising a 
synthetic instruction that stores the current LDT selector to EAX (e.g., P. 19-20, 
Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. - 2 nd Para., the GDT and 
LDT contain segment descriptors that provide the base address, access rights, 
type, length, and usage information for each segment; the interrupt descriptor 
table (IDT) is similar to the GDT and LDT, but it holds gate descriptors that 
provide access to interrupt and exception handlers; All three of these instructions 
(SGDT, SLDT, SIDT) store a special register value into some location. The 
SGDT instruction stores the contents of GDTR in a 6-byte memory location; the 
SLDT instruction stores the segment selector from the LDTR in a 16- or 32-bit 
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general-purpose register or memory location; The SIDT instruction stores the 
contents of IDTR in a 6-byte memory location; these instructions are normally 
only used by operating systems but are not privileged in the Intel™ architecture. 
Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a problem 
arises when multiple operating systems try to use the same registers. If an OS in 
a VM uses SGDT, SLDT, or SIDT to reference the contents of the IDTR, LDTR, 
or GDTR, the register contents that are applicable to the host OS or Type I VMM 
will be given. This could cause a problem if an operating system of a virtual 
machine (VMOS) tries to use these values for its own operations since they are 
what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must provide 
each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

25. As to claim 59 (Currently Amended) (incorporating the rejection in claim 
52), Robin discloses the computer-readable instructions further comprising a 
synthetic instruction that stores the current IDT base and length to EAX (e.g., P. 
19-20, Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. -2 nd Para., the 
GDT and LDT contain segment descriptors that provide the base address, 
access rights, type, length, and usage information for each segment; the interrupt 
descriptor table (IDT) is similar to the GDT and LDT, but it holds gate descriptors 
that provide access to interrupt and exception handlers; All three of these 
instructions (SGDT, SLDT, SIDT) store a special register value into some 
location. The SGDT instruction stores the contents of GDTR in a 6-byte memory 
location; the SLDT instruction stores the segment selector from the LDTR in a 
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16- or 32-bit general-purpose register or memory location; The SIDT instruction 
stores the contents of IDTR in a 6-byte memory location; these instructions are 
normally only used by operating systems but are not privileged in the Intel™ 
architecture. Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a 
problem arises when multiple operating systems try to use the same registers. If 
an OS in a VM uses SGDT, SLDT, or SIDT to reference the contents of the 
IDTR, LDTR, or GDTR, the register contents that are applicable to the host OS or 
Type I VMM will be given. This could cause a problem if an operating system of a 
virtual machine (VMOS) tries to use these values for its own operations since 
they are what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must 
provide each VM with its own virtual set of IDTR, LDTR, and GDTR registers) 

26. As to claim 60 (Currently Amended) (incorporating the rejection in claim 
52), Robin discloses the computer-readable instructions further comprising a 
synthetic instruction that stores the current TR selector to EAX (e.g., P. 26, Sec. 
5 - STR Instruction, 1 st Para. - this instruction prevents virtual ization because it 
allows a task to examine its requested privilege level (RPL). Every segment 
selector contains an index into the GDT or LDT, a table indicator, and an RPL. 
The RPL is represented by bit 0 and bit 1 of the segment selectors. This is a 
problem because a VM does not execute at the highest CPL or RPL (RPL = 0), 
but a RPL = 3. However, most operating systems assume that they are operating 
at the highest privilege level and that they can access any segment descriptor. 
Therefore, if a VM running at a CPL and RPL of 3 uses the STR to store the 
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contents of the task register and then examines the information, it will find that it 
is not running at the privilege level at which it expects to run) 

27. Claims 33 and 45 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Robin in view of Bennett and Devine 

28. As to claim 33 (Currently Amended) (incorporating the rejection in claim 
29), Devine discloses the system further comprising a subsystem for processing 
a synthetic instruction that updates the descriptor table entry, avoiding overheads 
associated with maintaining shadow descriptor tables (e.g., Abstract, Lines 7-14 
- a direct execution sub-system, as well as a sub-system that determines if VM 
instructions must be executed using binary translation, or if they can be executed 
using direct execution shadow descriptor tables in the VMM, corresponding to 
VM descriptor tables...; Col. 5, Lines 46-59 - the VMM includes VMM descriptor 
tables, including shadow descriptors, that correspond to predetermined ones of 
the VM descriptions tables; Col. 6, Lines 3-6 - the VMM thereby also uses binary 
translation using this cached entry until the processor segment is subsequently 
loaded with a VMM descriptor that is a shadow descriptor; Col. 5, Lines 46-59 - 
the VMM also includes a segment tracking sub-system/module that compares 
the shadow descriptors with their corresponding VM segment descriptors, and 
....; Col. 7, Lines 23-27 -the segment tracking sub-system then includes means 
for indicating to the VMM, on selected ones of the plurality of hardware 
processors, any lack of correspondence between the shadow descriptor tables 
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and their corresponding VM descriptor tables; Fig. 6 - illustrating shadow 
descriptor tables used in the VMM according to the invention; Col. 14, Lines 65- 
67 - the manner in which the invention overcomes this problem is through the 
use of shadow descriptor tables; Col. 16, Lines 33-63 - the virtual machine may 
set its GDT to the maximal size supported by the hardware, or to a size that 
exceeds the space reserved by the VMM for GDT shadow descriptors; Col. 17, 
Lines 39-60; Col. 18, Lines 54-57 - with direct execution, the virtual machine 
directly assigns segment registers; however, rather than using the virtual 
machine's tables, the hardware looks at the VMM's shadow tables; Col. 25, Lines 
9-13 - for each virtual processor, the VMM will then maintain a separate set of 
global and local shadow descriptor entries; Col. 26, Lines 3-11, 18-27, 41-47) 



29. As to claim 45 (Currently Amended) (incorporating the rejection in claim 
29), Devine discloses the system wherein said synthetic instruction comprise a 
synthetic instruction for enabling (or re-enabling) direct execution (e.g., 
VMDXENBL) (e.g., Abstract, Lines 7-14 - a direct execution sub-system, as well 
as a sub-system that determines if VM instructions must be executed using 
binary translation, or if they can be executed using direct execution Shadow 
descriptor tables in the VMM; Fig. 1 , elements of "Direct Execution", "Execution 
Mode Decision"; Col. 2, Lines 59-67 - it allowed virtual machine monitors to use 
a technique know as "direct execution" which simplifies the implementation of the 
monitor and improves performance; Col. 4, Lines 44-63; Col. 5, Lines 5-9 - what 
is needed is therefore a VMM that is able to function with both the speed of a 
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direct-execution system and the flexibility of a binary-translation system; Col. 5, 
Lines 20-30; Col. 7, Lines 13-17; Col. 8, Lines 26-34; Fig. 7; Col. 7, Lines 51-57; 
Fig. 2; Col. 1 0, Line 1 6 through Col. 11, Line 27) 



30. Claim 65 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Devine 

31 . As to claim 65 (Currently Amended), Robin discloses a system for 
processing synthetic instructions when executing on x86 processor architectures 
and their equivalents, including but not limited to the IA32 architecture, said 
system comprising: 

• removing, replacing, or supplementing instances of one or more of the 
following predefined instructions in the guest operating system: PUSH CS, 
PUSH SS (e.g., P. 24, Sec. 3 - PUSH Instruction, Lines 1-5 - this can not be 
allowed because bits 0 and 1 of the CS and SS register contain the CPL of 
the current executing task), MOV from SS (e.g., P. 26, Sec. 5 - STR 
Instruction, 2 nd Para. - this is a problem because the CS and SS registers 
both contain the CPL in bits 0 and 1 . therefore, a task could store the CS or 
SS in a general-purpose register and examine the contents of that register to 
find that is not operating at the correct privilege level), CALLF (e.g., P. 24, 
Sec. 4 - CALL, JMP, INT n, RET Instructions, 1 st Para - task switches and far 
calls to different privilege levels are problems because they involve the CPL, 
DPL, and RPL of the Intel™ protection system), VERR, VERW, and LAR 
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(e.g., P. 23, Sec. 1 - LAR, LSL, VERR, VERW Instructions, the LAR 
instruction loads access rights from a segment descriptor into a general 
purpose register; the VERR and VERW instructions verify whether a code or 
data segment is readable or writable from the current privilege level. The 
problem with these instructions is that they all perform the following check 
during their execution: (CPL > DPL) or (RPL > DPL); this conditional checks 
to ensure that the current privilege level and the requested privilege level are 
both greater than the descriptor privilege level. This is a problem because a 
VM normally does not execute at the highest CPL) 

Further, Robin discloses the problem of implementing secure virtual 
machine monitors (VMM) on the Intel Pentium™ architecture and techniques are 
presented that allow the Intel™ architecture to support a "virtual VMM" (e.g., 
Abstract), but does not explicitly disclose synthetic instructions that are 
configured to cause at least one exception to be trappable by a virtualization 
layer, and wherein said synthetic instructions are illegal to said architecture. 

However, in an analogous art of Virtualization System Including a Virtual 
Machine Monitor for a Computer with a Segmented Architecture, Devine 
discloses synthetic instructions (e.g., Abstract, ... Connected to the VMM for 
running a sequence of VM instructions ...) that are configured to cause at least 
one exception (e.g., Col. 8, Lines 35-43 - ... Can be changed only by protected 
mechanisms, either instructions or exceptions : Col. 12, Lines 57-60 - ... if the 
execution of the instruction leads to an exception of the virtual machine Col. 
1 4, Lines 57-60 - . . . requirements of the virtual machine monitor .... is the ability 



Application/Control Number: 10/685,051 Page 
Art Unit: 2192 

to handle traps ( exceptions and interrupts) transparently to the execution of the 
virtual machine) to be trappable (e.g., Col. 2, Lines 2-4 - the VMM thus need 
only to correctly emulate the traps to allow the correct execution of the operating 
system in the virtual machine; Col. 4, Lines 52-54 - ... the VMM must handle only 
the traps that result from attempts by the virtual machine to issue privileged 
instructions) by a virtualization layer (e.g., Abstract - ... the invention provides a 
virtual machine monitor (VMM) and a virtual machine (VM) that has least one 
virtual processor and is operatively connected to the VMM for running a 
sequence of VM instructions , which are either directly executable or non-directly 
executable ), and wherein said synthetic instructions are illegal to said 
architecture (e.g., Col. 7, Lines 9-1 3 -the VMM then operates within the 
protected operation mode and uses binary translation to execute VM instructions 
whenever the real and system management operation modes of the processor 
are to be virtual ized ) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Devine into the 
Robin's system to further provide synthetic instructions that are configured to 
cause at least one exception to be trappable by a virtualization layer, and 
wherein said synthetic instructions are illegal to said architecture in Robin 
system. 

The motivation is that it would further enhance the Robin's system by 
taking, advancing and/or incorporating Devine's system which offers significant 
advantages that the invention is particularly well-adapted for virtualizing 
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computers in which the hardware processor has an Intel x86™ architecture as 
once suggested by Devine (e.g., Abstract) 

32. Claim 28 is rejected under 35 U.S.C. 103(a) as being unpatentable over K. 
Virtual 8080 Mode (Intel 80386™ Programmer's Reference 1986, pp. 1-18, 1986, 
Intel 80386™ Programmer's Reference) (hereinafter 'V86') in view of Devine and 
Bennett 

33. As to claim 28 (Currently Amended), V86 discloses a method for 
improving operating system code for efficient patching of trappable instructions 
using a long JMP instruction, said method comprising the step of: 

• in a guest operating system, locating instances of trappable instructions 
that are less than five bytes long (e.g., including instructions that run within 
ring-0 code) and; 

• replacing the trappable instructions with corresponding synthetic 
instructions that are at least five bytes long (e.g., PP. 10-11, "Additional 
Sensitive Instructions", CLI - Clear Interrupt-Enable Flag; STI - Set 
Interrupt-Enable Flag; PP. 11-12, "Virtualizing the Interrupt-Enable Flag", 
1 st Para -2 nd Para) 

V86 does not explicitly disclose wherein said synthetic instructions are 
configured to cause at least one exception to be trappable by a virtualization 
layer, and wherein said synthetic instructions are illegal to a physical processor 
architecture underlying said guest operation system. 
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However, in an analogous art of Visualization System Including a Virtual 
Machine Monitor for a Computer with a Segmented Architecture, Devine 
discloses wherein said synthetic instructions (e.g., Abstract, .... Connected to the 
VMM for running a sequence of VM instructions ...) are configured to cause at 
least one exception (e.g., Col. 8, Lines 35-43 - ... Can be changed only by 
protected mechanisms, either instructions or exceptions : Col. 12, Lines 57-60 - ... 
if the execution of the instruction leads to an exception of the virtual machine 
Col. 14, Lines 57-60 - ... requirements of the virtual machine monitor .... is the 
ability to handle traps ( exceptions and interrupts) transparently to the execution 
of the virtual machine) to be trappable (e.g., Col. 2, Lines 2-4 - the VMM thus 
need only to correctly emulate the traps to allow the correct execution of the 
operating system in the virtual machine; Col. 4, Lines 52-54 - ... the VMM must 
handle only the traps that result from attempts by the virtual machine to issue 
privileged instructions) by a virtualization layer (e.g., Abstract - ... the invention 
provides a virtual machine monitor (VMM) and a virtual machine (VM) that has 
least one virtual processor and is operativelv connected to the VMM for running a 
sequence of VM instructions , which are either directly executable or non-directlv 
executable ), and wherein said synthetic instructions are illegal to a physical 
processor architecture underlying said guest operation system (e.g., Col. 7, Lines 
9-13 - the VMM then operates within the protected operation mode and uses 
binary translation to execute VM instructions whenever the real and system 
management operation modes of the processor are to be virtualized ) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Devine into the 
V86's system to further provide wherein said synthetic instructions are configured 
to cause at least one exception to be trappable by a virtual ization layer, and 
wherein said synthetic instructions are illegal to a physical processor architecture 
underlying said guest operation system in the V86 system. 

The motivation is that it would further enhance the V86's system by taking, 
advancing and/or incorporating Devine's system which offers significant 
advantages that the invention is particularly well-adapted for virtualizinq 
computers in which the hardware processor has an Intel x86™ architecture as 
once suggested by Devine (e.g., Abstract) 

34. Claim 67 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Devine in view of Bennett 

35. As to claim 67 (Currently Amended), Devine discloses a method for 
processing synthetic instructions executable on a processor architecture (e.g., 
the invention is particularly well-adapted for virtualizinq computers in which the 
hardware processor has an Intel x86™ architecture ), comprising: 

• removing, replacing, or supplementing at least one predefined instruction 
in a guest operating system, running in a virtual machine environment, 
with synthetic instructions (e.g., Abstract, ... Connected to the VMM for 
running a sequence of VM instructions Col. 25, Lines 23-45 - a system 
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for virtualizing a computer comprising: ... the VM instructions including 
directly executable VM instructions and no-directly executable instructions : 
.. an execution decision sub-system forming decision means for 
discriminating between the directly executable and non-directly executable 
VM instructions ; Col. 25, Line 23 through Col. 32, Line 1 9); 

• wherein at least one of said synthetic instructions is configured to cause at 
least one exception trappable by a virtualization layer when privileged- 
level code is run at user-level, wherein at least one of said synthetic 
instructions is illegal to said processor architecture (e.g., Col. 2, Lines 1-4 
- . . . attempts to issue a privileged instruction , the VMM thus need only to 
correctly emulate the traps to allow the correct execution of the operating 
system in the virtual machine; Col. 4, Lines 52-54 - ... the VMM must 
handle only the traps that result from attempts by the virtual machine to 
issue privileged instructions); 

• causing said at least one exception to be issued by said processor 
architecture by using at least one of said synthetic instructions (e.g., Col. 
8, Lines 35-43 - ... Can be changed only by protected mechanisms, either 
instructions or exceptions ; Col. 12, Lines 57-60 - ... if the execution of the 
instruction leads to an exception of the virtual machine ....; Col. 14, Lines 
57-60 requirements of the virtual machine monitor .... is the ability to 
handle traps ( exceptions and interrupts) transparently to the execution of 
the virtual machine; 
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• invoking a trap handler within said virtual ization laver (e.g., Abstract 
the invention provides a virtual machine monitor ( VMM ) and a virtual 
machine (VM) that has least one virtual processor and is operatively 
connected to the VMM for running a sequence of VM instructions , which 
are either directly executable or non-directly executable ) in order to trap 
said at least one exception (e.g., Col. 2, Lines 2-4 - the VMM thus need 
only to correctly emulate the traps to allow the correct execution of the 
operating system in the virtual machine; Col. 4, Lines 52-54 - ... the VMM 
must handle only the traps that result from attempts by the virtual machine 
to issue privileged instructions); 

• emulating with said virtualization layer any implied state changes based 
on processing of said at least one exception (e.g., Col 6, Line 53 through 
Col. 7, Line 5 - ... the virtual processor has a plurality of processing states 
at a plurality of current privilege levels (CPL) ...); 

Furthermore, Devine discloses the invention is particularly well-adapted for 
virtualizing computers in which the hardware processor has an Intel x86™ 
architecture (e.g., Abstract), but does not explicitly disclose the following: 

• determining whether said synthetic instructions are supported by said 
virtual machine environment by executing at least one of said synthetic 
instructions; 

• enabling direct execution of instructions on said processor architecture 
using at least one of said synthetic instructions; 
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• returning control to any subsequent instructions of said guest operating 
system. 

However, in an analogous art of Control Register Access Virtualization 
Performance Improvement in the Virtual-Machine Architecture, Bennett discloses 
the following: 

• determining whether said synthetic instructions are supported by said 
virtual machine environment by executing at least one of said synthetic 
instructions (e.g., Col. 3, Lines 54-67 - ... which then decides whether to 
perform a requested operation (e.g., emulate it for the guest software, 
proxy the operation directly to the platform hardware) or deny access to 
the resource ...); 

• enabling direct execution of instructions on said processor architecture 
using at least one of said synthetic instructions (e.g., Fig. 1 - elements 
104 - OS #1 ; 1 12 - Virtual-Machine Monitor (VMM); 1 16 - Bare Platform 
Hardware; 122-VMCS; 1 1 8 - Processor; Col. 3, Lines 54-56 -The VMM 
1 1 2 facilitates functionality desired by guest software while retaining 
ultimate control over privileged hardware resources within the platform 
hardware 116; Col. 4, Lines 1-3 - ... the transfer of control from guest 
software to VMM is dictated by control bit settings in a virtual machine 
control structure (VMCS) 122; Col. 4, Lines 27-34 - ... as virtualization 
events ... may result in its access of certain privileged hardware resources 
(e.g., a control register or an IO port)); 
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• returning control to any subsequent instructions of said guest operating 
system (e.g., Col 4, Lines 48-51 - ... when a transition from the VMM to 
guest software occurs, the processor state that was saved at the VM exit 
is restored and control is returned to the guest OS or guest application) 

Therefore, it would have been obvious to one of ordinary skill in the art, at the 
time the invention was made to combine the teachings of Bennett into the 
Devine's system to further provide the following in the Devine system: 

• determining whether said synthetic instructions are supported by said 
virtual machine environment by executing at least one of said synthetic 
instructions; 

• enabling direct execution of instructions on said processor architecture 
using at least one of said synthetic instructions; 

• returning control to any subsequent instructions of said guest operating 
system. 

The motivation is that it would further enhance the Devine's system by 
taking, advancing and/or incorporating the Bennett's system which offers 
significant advantages for resolving significant performance overheads for 
virtualization of control register accesses as once suggested by Bennett (e.g., 
Col. 1, Lines 45-60) 

Claim Rejections - 35 USC § 102(a) 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102(a) 
that form the basis for the rejections under this section made in this office action: 
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A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a 
printed publication in this or a foreign country, before the invention thereof by the applicant for 
a patent. 

36. Claim 25 is rejected under 35 U.S.C. 103(a) as being unpatentable over K. 
P. Lawton (Bochs x86 Emulator - monitor-host. c, pp. 1-42, 
bochs.sourceforge.net) (hereinafter 'Lawton') in view of Devine and Bennett 

37. As to claim 25 (Currently Amended), Lawton discloses a method for an 
operating system to determine whether it is running on a virtualized processor or 
running directly on an x86 processor, said method comprising: 

• executing a synthetic instruction for returning a value representing an 
identity for the central processing unit; if a value is returned, then 
concluding that the operating system is running on a virtualized 
processor, and thereafter utilizing synthetic instructions; and if an 
exception occurs, then concluding that the operating system is running 
directly on an x86 processor, and thereafter refraining from utilizing 
synthetic instructions (e.g., P. 2, Lines 45-47 - information of the host 
processor as returned by the CUPID; P. 17, Lines 729-740 - set the 
guest CUPID info.; P. 19, Lines 832-835 - a pointer to the guest CPU 
state as passed from host-user space; P. 22, Lines 968-988 - CPUID 
emulation vs. virtualization match; P. 26, Lines 1168-1176 - a pointer 
to the guest CPU state saved on the monitor stack; P. 28, Lines 1246- 
1259; P. 35, Lines 1571-1572) 
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Lawton does not explicitly disclose wherein said synthetic instructions are 
configured to cause at least one exception to be trappable by a virtualization 
layer, and wherein said synthetic instructions are illegal to said architecture. 

However, in an analogous art of Virtualization System Including a Virtual 
Machine Monitor for a Computer with a Segmented Architecture, Devine 
discloses wherein said synthetic instructions (e.g., Abstract, .... Connected to the 
VMM for running a sequence of VM instructions ...) are configured to cause at 
least one exception (e.g., Col. 8, Lines 35-43 - ... Can be changed only by 
protected mechanisms, either instructions or exceptions : Col. 12, Lines 57-60 - ... 
if the execution of the instruction leads to an exception of the virtual machine 
Col. 14, Lines 57-60 - ... requirements of the virtual machine monitor .... is the 
ability to handle traps ( exceptions and interrupts) transparently to the execution 
of the virtual machine) to be trappable (e.g., Col. 2, Lines 2-4 - the VMM thus 
need only to correctly emulate the traps to allow the correct execution of the 
operating system in the virtual machine; Col. 4, Lines 52-54 - ... the VMM must 
handle only the traps that result from attempts by the virtual machine to issue 
privileged instructions) by a virtualization layer (e.g., Abstract - ... the invention 
provides a virtual machine monitor (VMM) and a virtual machine (VM) that has 
least one virtual processor and is operativelv connected to the VMM for running a 
sequence of VM instructions , which are either directly executable or non-directlv 
executable ), and wherein said synthetic instructions are illegal to said 
architecture (e.g., Col. 7, Lines 9-13 - the VMM then operates within the 
protected operation mode and uses binary translation to execute VM instructions 
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whenever the real and system management operation modes of the processor 
are to be virtualized ) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Devine into the 
Lawton's system to further provide wherein said synthetic instructions are 
configured to cause at least one exception to be trappable by a virtualization 
layer, and wherein said synthetic instructions are illegal to said architecture in 
Lawton system. 

The motivation is that it would further enhance the Lawton's system by 
taking, advancing and/or incorporating Devine's system which offers significant 
advantages that the invention is particularly well-adapted for virtualizing 
computers in which the hardware processor has an Intel x86™ architecture as 
once suggested by Devine (e.g., Abstract) 

Furthermore, Devine discloses the invention is particularly well-adapted 
for virtualizing computers in which the hardware processor has an Intel x86 
architecture (e.g., Abstract), but does not explicitly disclose wherein said 
synthetic instruction is configured to be executed from any privileged level. 

However, in an analogous art of Control Register Access Virtualization 
Performance Improvement in the Virtual-Machine Architecture, Bennett discloses 
wherein said synthetic instruction is configured to be executed from any 
privileged level (e.g., Col. 4, Lines 27-34 - ... as virtualization events ... may 
result in its access of certain privileged hardware resources (e.g., a control 
register or an IO port) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Bennett into the 
Lawton-Devine's system to further provide wherein said synthetic instruction is 
configured to be executed from any privileged level in the Lawton-Devine system. 

The motivation is that it would further enhance the Lawton-Devine's 
system by taking, advancing and/or incorporating the Bennett's system which 
offers significant advantages for resolving significant performance overheads for 
virtualization of control register accesses as once suggested by Bennett (e.g., 
Col. 1, Lines 45-60) 

38. Claim 26 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Lawton in view of Devine and Robin 

39. As to claim 26 (original) (incorporating the rejection in claim 25), Lawton 
and Devine do not explicitly disclose the method further comprising, if a value is 
returned, then accessing or modifying features or behaviors of the underlying 
virtual machine monitor. 

However, in an analogous art of Analyzing the INTEL Pentium's Capability 
to Support a Secure Virtual Machine Monitor, Robin discloses the method further 
comprising, if a value is returned, then accessing or modifying features or 
behaviors of the underlying virtual machine monitor (i.e. P. 5, Sec. 3 - Logical 
VMM Modules - A VMM normally has three generic types of modules: 
dispatcher, allocator, and interpreter; A jump to the dispatcher is placed in every 
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location to which the machine traps. The dispatcher then decides which of its 
modules to call when the machine traps; For example, if a VM tries to execute a 
privileged instruction that would change the resources of the VM's environment, 
the VM will trap to the VMM dispatcher. The dispatcher will handle the trap by 
invoking the allocator that performs the requested resource allocation according 
to VMM policy. The final module type is an interpreter. Each privileged instruction 
will have an interpreter module that is called by the dispatcher to simulate the 
effect of the instruction that caused the trap). 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Robin into the 
Lawton-Devine's system to further provide the method further comprising, if a 
value is returned, then accessing or modifying features or behaviors of the 
underlying virtual machine monitor in Lawton-Devine system. 

The motivation is that it would further enhance the Lawton-Devine's 
system by taking, advancing and/or incorporating Robin's system which offers 
significant advantages that if a secure VMM could be built for the Intel Pentium™ 
architecture, it would be very attractive because a single machine could be used 
to implement multi-level security and also run commercial-off-the-shelf operating 
systems and applications as once suggested by Robin (e.g., P. 1 st Para) 

40. Claims 15-16 and 22-23 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Robin in view of Devine, Bennett and V86. 
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41 . As to claim 15 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine, and Bennett do not disclose the method wherein a PUSHF(D) 
instruction in the guest operating system is replaced with a synthetic instruction 
that pushes IF onto a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
method wherein a PUSHF(D) instruction in the guest operating system is 
replaced with a synthetic instruction that pushes IF onto a stack (e.g., PP. 10-11, 
"Additional Sensitive Instructions", PUSHF - Push Flags, Sec. 15.4.2 
"Virtualizing the Interrupt-Enable Flag", 1 st Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine-Bennett's system to further provide the method wherein a PUSHF(D) 
instruction in the guest operating system is replaced with a synthetic instruction 
(e.g., VMPUSHFD) that pushes IF onto a stack in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 
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42. As to claim 16 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine and Bennett do not disclose the method wherein a POPF(D) 
instruction in the guest operating system is replaced with a synthetic instruction 
that pops IF off of a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
method wherein a POPF(D) instruction in the guest operating system is replaced 
with a synthetic instruction that pops IF off of a stack (e.g., PP. 10-11, "Additional 
Sensitive Instructions", POPF - Pop Flags; Sec. 15.4.2 "Virtualizing the Interrupt- 
Enable Flag", 1 st Para). 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine-Bennett's system to further provide the method wherein a POPF(D) 
instruction in the guest operating system is replaced with a synthetic instruction 
(e.g., VMPOPFD) that pops IF off of a stack in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 



Application/Control Number: 10/685,051 Page 
Art Unit: 2192 

43. As to claim 22 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine, and Bennett do not disclose the method wherein a CLI 
instruction in the guest operating system is replaced with a synthetic instruction 
that clears a virtualized IF. 

However, in an analogous art of Virtua/ 8088 Mode, V86 discloses the 
method wherein a CLI instruction in the guest operating system is replaced with a 
synthetic instruction that clears a virtualized IF (e.g., PP. 10-11, "Additional 
Sensitive Instructions", CLI - Clear Interrupt-Enable Flag; STI - Set Interrupt- 
Enable Flag; PP. 11-12, "Virtualizing the Interrupt-Enable Flag", 1 st Para -2 nd 
Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine-Bennett's system to further provide the method wherein a CLI instruction 
in the guest operating system is replaced with a synthetic instruction that clears a 
virtualized IF in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086™ program; a complete virtual machine consists not only of 80386™ 
hardware but also of systems software; thus, the emulation of an 8086™ is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 
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44. As to claim 23 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine, and Bennett do not disclose the method wherein a STI 
instruction in the guest operating system is replaced with a synthetic instruction 
that sets a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
method wherein a STI instruction in the guest operating system is replaced with a 
synthetic instruction that sets a virtualized IF (e.g., PP. 10-11, "Additional 
Sensitive Instructions", CLI - Clear Interrupt-Enable Flag; STI - Set Interrupt- 
Enable Flag; PP. 11-12, "Virtualizing the Interrupt-Enable Flag", 1 st Para -2 nd 
Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine-Bennett's system to further provide the method wherein a STI instruction 
in the guest operating system is replaced with a synthetic instruction that sets a 
virtualized IF in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 
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45. Claims 31 -32, 38-39, 46-48, 55-56, and 61 -62 are rejected under 35 
U.S.C. 103(a) as being unpatentable over Robin in view of Bennett and V86. 

46. As to claim 31 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for processing a synthetic instruction for pushing an IF onto a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system further comprising a subsystem for processing a synthetic instruction for 
pushing an IF onto a stack (e.g., PP. 10-11, "Additional Sensitive Instructions", 
PUSHF - Push Flags, Sec. 15.4.2 "Virtualizing the Interrupt-Enable Flag", 1 st 
Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the system further comprising a subsystem 
for processing a synthetic instruction for pushing an IF onto a stack in Robin- 
Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 
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47. As to claim 32 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for processing a synthetic instruction for popping an IF off of a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system further comprising a subsystem for processing a synthetic instruction for 
popping an IF off of a stack (e.g., PP. 10-11, "Additional Sensitive Instructions", 
POPF - Pop Flags; Sec. 15.4.2 "Virtualizing the Interrupt-Enable Flag", 1 st Para). 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the system further comprising a subsystem 
for processing a synthetic instruction for popping an IF off of a stack in Robin- 
Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 
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48. As to claim 38 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for processing a synthetic instruction for clearing a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system further comprising a subsystem for processing a synthetic instruction for 
clearing a virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the system further comprising a subsystem 
for processing a synthetic instruction for clearing a virtualized IF in Robin- 
Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086™ program; a complete virtual machine consists not only of 80386™ 
hardware but also of systems software; thus, the emulation of an 8086™ is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 
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49. As to claim 39 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for processing a synthetic instruction for setting a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system further comprising a subsystem for processing a synthetic instruction for 
setting a virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the system further comprising a subsystem 
for processing a synthetic instruction for setting a virtualized IF in Robin- Bennett 
system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 

50. As to claim 46 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system wherein said synthetic 
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instructions comprise: a synthetic instruction for pushing an IF onto a stack; and 
a synthetic instruction for popping an IF off of a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system wherein said synthetic instructions comprise: a synthetic instruction for 
pushing an IF onto a stack; and a synthetic instruction for popping an IF off of a 
stack (e.g., PP. 10-11, "Additional Sensitive Instructions", PUSHF - Push Flags, 
POPF - Pop Flags; Sec. 15.4.2 - "Virtualizing the Interrupt-Enable Flag", 1 st 
Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the system wherein said synthetic 
instructions comprise: a synthetic instruction for pushing an IF onto a stack; and 
a synthetic instruction for popping an IF off of a stack in Robin- Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086™ program; a complete virtual machine consists not only of 80386™ 
hardware but also of systems software; thus, the emulation of an 8086™ is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 

51 . As to claim 47 (Currently Amended) (incorporating the rejection in claim 
46), Robin discloses the system wherein said synthetic instructions further 
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comprise: a synthetic instruction for storing the current GDT base and length to a 
synthetic instruction for storing the current LDT selector to EAX; a synthetic 
instruction for storing the current IDT base and length to EAX (e.g., P. 19-20, 
Sec. 1 - SGDT, SIDT, and SLDT Instructions, 1 st Para. - 2 nd Para., the GDT and 
LDT contain segment descriptors that provide the base address, access rights, 
type, length, and usage information for each segment; the interrupt descriptor 
table (IDT) is similar to the GDT and LDT, but it holds gate descriptors that 
provide access to interrupt and exception handlers; All three of these instructions 
(SGDT, SLDT, SIDT) store a special register value into some location. The 
SGDT instruction stores the contents of GDTR in a 6-byte memory location; the 
SLDT instruction stores the segment selector from the LDTR in a 16- or 32-bit 
general-purpose register or memory location; The SIDT instruction stores the 
contents of IDTR in a 6-byte memory location; these instructions are normally 
only used by operating systems but are not privileged in the Intel™ architecture. 
Since the Intel™ processor only has one LDTR, IDTR, and GDTR, a problem 
arises when multiple operating systems try to use the same registers. If an OS in 
a VM uses SGDT, SLDT, or SIDT to reference the contents of the IDTR, LDTR, 
or GDTR, the register contents that are applicable to the host OS or Type I VMM 
will be given. This could cause a problem if an operating system of a virtual 
machine (VMOS) tries to use these values for its own operations since they are 
what the VMOS expect. Therefore, a Type 1 VMM or Type II VMM must provide 
each VM with its own virtual set of IDTR, LDTR, and GDTR registers); and a 
synthetic instruction (e.g., VMSTR) for storing the current TR selector to EAX (P. 
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26, Sec. 5 - STR Instruction, 1 st Para. - this instruction prevents virtualization 
because it allows a task to examine its requested privilege level (RPL). Every 
segment selector contains an index into the GDT or LDT, a table indicator, and 
an RPL. The RPL is represented by bit 0 and bit 1 of the segment selectors. This 
is a problem because a VM does not execute at the highest CPL or RPL (RPL = 
0), but a RPL = 3. However, most operating systems assume that they are 
operating at the highest privilege level and that they can access any segment 
descriptor. Therefore, if a VM running at a CPL and RPL of 3 uses the STR to 
store the contents of the task register and then examines the information, it will 
find that it is not running at the privilege level at which it expects to run) 

52. As to claim 48 (Currently Amended) (incorporating the rejection in claim 
46), Robin and Bennett do not disclose the system wherein said synthetic 
instructions further comprise: a synthetic instruction for clearing a virtualized IF; 
and a synthetic instruction for setting a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
system wherein said synthetic instructions further comprise: a synthetic 
instruction for clearing a virtualized IF; and a synthetic instruction for setting a 
virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - Clear 
Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, "Virtualizing 
the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
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Bennett's system to further provide the system wherein said synthetic 
instructions further comprise: a synthetic instruction for clearing a virtualized IF; 
and a synthetic instruction for setting a virtualized IF in Robin- Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 

53. As to claim 55 (Currently Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising a synthetic instruction that pushes IF onto a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
computer-readable instructions further comprising a synthetic instruction that 
pushes IF onto a stack (e.g., PP. 10-11, "Additional Sensitive Instructions", 
PUSHF - Push Flags; Sec. 15.4.2 "Virtualizing the Interrupt-Enable Flag", 1 st 
Para). 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the computer-readable instructions further 
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comprising a synthetic instruction that pushes IF onto a stack in Robin- Bennett 
system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086™ program; a complete virtual machine consists not only of 80386™ 
hardware but also of systems software; thus, the emulation of an 8086™ is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 

54. As to claim 56 (Currently Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising a synthetic instruction that pops IF off of a stack. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
computer-readable instructions further comprising a synthetic instruction that 
pops IF off of a stack (e.g., PP. 10-11, "Additional Sensitive Instructions", POPF 
- Pop Flags; Sec. 15.4.2 "Virtualizing the Interrupt-Enable Flag", 1 st Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the computer-readable instructions further 
comprising a synthetic instruction that pops IF off of a stack in Robin- Bennett 
system. 
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The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086™ program; a complete virtual machine consists not only of 80386™ 
hardware but also of systems software; thus, the emulation of an 8086™ is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 

55. As to claim 61 (Currently Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising a synthetic instruction that clears a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
computer-readable instructions further comprising a synthetic instruction that 
clears a virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the computer-readable instructions further 
comprising a synthetic instruction that clears a virtualized IF in Robin- Bennett 
system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
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significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 

56. As to claim 62 (Currently Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising a synthetic instruction that sets a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
computer-readable instructions further comprising a synthetic instruction that 
sets a virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Bennett's system to further provide the computer-readable instructions further 
comprising a synthetic instruction (e.g., VMSTI) that sets a virtualized IF in 
Robin-Devine system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
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but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 

57. Claim 13 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Devine and Bennett and further in view of Lawton. 

58. As to claim 13 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine, and Bennett do not disclose the method wherein a CPUID 
instruction in the guest operating system is replaced with a synthetic instruction 
that reads virtualized CPUID information. 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses the method wherein a CPUID instruction in the 
guest operating system is replaced with a synthetic instruction that reads 
virtualized CPUID information (e.g., P. 2, Lines 45-47 - information of the host 
processor as returned by the CUPID; P. 17, Lines 729-740 - set the guest 
CUPID info.; P. 19, Lines 832-835 - a pointer to the guest CPU state as passed 
from host-user space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization 
match; P. 26, Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the 
monitor stack; P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin-Devine-Bennett's system to further provide the method wherein a CPUID 
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instruction in the guest operating system is replaced with a synthetic instruction 
that reads virtualized CPUID information in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating Lawton's system which 
contains the top-level monitor accessible from the host space (kernel 
independent code) as once suggested by Lawton (e.g., P. 1, Lines 5-6) 

59. Claims 41-42, 54, and 63 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Robin in view of Bennett and Lawton. 

60. As to claim 41 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for determining whether said system is running on a virtualized 
processor or running directly on an x86 processor, said subsystem comprising: a 
subsystem for executing a synthetic instruction for returning a value representing 
an identity for features supported by the central processing unit; and a 
subsystem for determining if a value is returned and (a) if so, concluding that the 
operating system is running on a virtualized processor, and thereafter utilize 
synthetic instructions, and (b) if not, concluding that the operating system is 
running directly on an x86 processor, and thereafter refrain from utilizing 
synthetic instructions. 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses the system further comprising a subsystem for 
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determining whether said system is running on a virtualized processor or running 
directly on an x86 processor, said subsystem comprising: a subsystem for 
executing a synthetic instruction for returning a value representing an identity for 
features supported by the central processing unit; and a subsystem for 
determining if a value is returned and (a) if so, concluding that the operating 
system is running on a virtualized processor, and thereafter utilize synthetic 
instructions, and (b) if not, concluding that the operating system is running 
directly on an x86 processor, and thereafter refrain from utilizing synthetic 
instructions (e.g., P. 2, Lines 45-47 - information of the host processor as 
returned by the CUPID; P. 17, Lines 729-740 - set the guest CUPID info.; P. 19, 
Lines 832-835 - a pointer to the guest CPU state as passed from host-user 
space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization match; P. 26, 
Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the monitor stack; 
P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin- Bennett's system to further provide the system further comprising a 
subsystem for determining whether said system is running on a virtualized 
processor or running directly on an x86 processor, said subsystem comprising: a 
subsystem for executing a synthetic instruction for returning a value representing 
an identity for features supported by the central processing unit; and a 
subsystem for determining if a value is returned and (a) if so, concluding that the 
operating system is running on a virtualized processor, and thereafter utilize 
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synthetic instructions, and (b) if not, concluding that the operating system is 
running directly on an x86 processor, and thereafter refrain from utilizing 
synthetic instructions in the Robin- Bennett system. 

The motivation is that it would further enhance the Robin- Bennett's 
system by taking, advancing and/or incorporating Lawton's system which 
contains the top-level monitor accessible from the host space (kernel 
independent code) as once suggested by Lawton (e.g., P. 1, Lines 5-6) 

61 . As to claim 42 (original) (incorporating the rejection in claim 41 ), Lawton 
discloses the system further comprising a subsystem for accessing or modifying 
features or behaviors of the underlying virtual machine monitor if a value is 
returned (e.g., P. 2, Lines 45-47 - information of the host processor as returned 
by the CUPID; P. 1 7, Lines 729-740 - set the guest CUPID info.; P. 1 9, Lines 
832-835 - a pointer to the guest CPU state as passed from host-user space; P. 
22, Lines 968-988 - CPUID emulation vs. virtualization match; P. 26, Lines 1168- 
1 1 76 - a pointer to the guest CPU state saved on the monitor stack; P. 28, Lines 
1246-1259; P. 35, Lines 1571-1572) 

62. As to claim 54 (Currently Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising a synthetic instruction for returning a value representing an 
identity for the central processing unit. 
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However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses the computer-readable instructions further 
comprising a synthetic instruction for returning a value representing an identity 
for the central processing unit (e.g., P. 2, Lines 45-47 - information of the host 
processor as returned by the CUPID; P. 17, Lines 729-740 - set the guest 
CUPID info.; P. 19, Lines 832-835 - a pointer to the guest CPU state as passed 
from host-user space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization 
match; P. 26, Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the 
monitor stack; P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin-Bennett's system to further provide the computer-readable instructions 
further comprising a synthetic instruction for returning a value representing an 
identity for the central processing unit in Robin-Bennett system. 

The motivation is that it would further enhance the Robin-Bennett's system 
by taking, advancing and/or incorporating Lawton's system which contains the 
top-level monitor accessible from the host space (kernel independent code) as 
once suggested by Lawton (e.g., P. 1, Lines 5-6) 

63. As to claim 63 (Previously Amended) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising instructions for determining whether said instructions are 
running on a virtualized processor or running directly on an x86 processor, said 



Application/Control Number: 10/685,051 Page 
Art Unit: 2192 

instructions comprising: instructions for executing a synthetic instruction for 
returning a value representing an identity for the central processing unit; and 
instructions for determining if value corresponding to an identity for the central 
processing unit is returned and (a) if so, utilizing synthetic instructions, and (b) if 
not, suspending use of synthetic instructions. 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses the computer-readable instructions further 
comprising instructions for determining whether said instructions are running on a 
virtualized processor or running directly on an x86 processor, said instructions 
comprising: instructions for executing a synthetic instruction for returning a value 
representing an identity for the central processing unit; and instructions for 
determining if value corresponding to an identity for the central processing unit is 
returned and (a) if so, utilizing synthetic instructions, and (b) if not, suspending 
use of synthetic instructions (e.g., P. 2, Lines 45-47 - information of the host 
processor as returned by the CUPID; P. 17, Lines 729-740 - set the guest 
CUPID info.; P. 1 9, Lines 832-835 - a pointer to the guest CPU state as passed 
from host-user space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization 
match; P. 26, Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the 
monitor stack; P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin-Bennett's system to further provide the computer-readable instructions 
further comprising instructions for determining whether said instructions are 
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running on a virtualized processor or running directly on an x86 processor, said 
instructions comprising: instructions for executing a synthetic instruction for 
returning a value representing an identity for the central processing unit; and 
instructions for determining if value corresponding to an identity for the central 
processing unit is returned and (a) if so, utilizing synthetic instructions, and (b) if 
not, suspending use of synthetic instructions in Robin-Bennett system. 

The motivation is that it would further enhance the Robin-Bennett's system 
by taking, advancing and/or incorporating Lawton's system which contains the 
top-level monitor accessible from the host space (kernel independent code) as 
once suggested by Lawton (e.g., P. 1, Lines 5-6) 

64. Claim 14 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Devine and Bennett and further in view of Carlos et al. {User- 
Kernel Reactive Threads for Linux, Jan. 2003, SCI 2003, pp. 1-6) (hereinafter 
'Carlos') 

65. As to claim 14 (Currently Amended) (incorporating the rejection in claim 
3), Robin and Devine do not disclose the method wherein at least one multi- 
processor spin lock instruction in the guest operating system is supplemented 
with a synthetic instruction for determining when a spin lock acquisition has 
failed. 

However, in an analogous art of User-Kernel Reactive Threads for Linux, 
Carlos discloses the method wherein at least one multi-processor spin lock 
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instruction in the guest operating system is supplemented with a synthetic 
instruction for determining when a spin lock acquisition has failed (e.g., Sec. 2 - 
Related Works, 2 nd Para - in this model each user thread is associated to a 
virtual processor, an abstraction of a physical processor dedicated to only one 
activity. The kernel is able to change the number of virtual processors during the 
program execution, besides the kernel can communicate with the user level 
scheduler by means of a notification system..; Sub-sec. of "Virtual Processors"; 
Sec. 2 - Related Works, sub-sec. of "Synchronization", 1 st Para - 2 nd Para - spin 
locks and FIFO locks; a spin lock is a binary semaphore; the acquisition of the 
spin lock is based in a busy-wait cycle; the primitives in the API to manipulate the 
FIFO locks are: uk_lock(), uk_trylock(), and uk_unlock(), with a similar meaning 
as the primitives explained above for the spin locks) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Carlos into the 
Robin-Devine-Bennett's system to further provide the method wherein at least 
one multi-processor spin lock instruction in the guest operating system is 
supplemented with a synthetic instruction for determining when a spin lock 
acquisition has failed in the Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating Carlos's system which offers 
significant advantages that a new general purpose model of user-kernel threads 
for Linux with excellent performance and scalability for as once suggested by 
Carlos (e.g., Abstract) 
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66. Claims 30 and 53 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Robin in view of Bennett and Carlos 

67. 

68. As to claim 30 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem whereby a synthetic instruction for determining when a spin lock 
acquisition has failed is trapped and processed. 

However, in an analogous art of User-Kernel Reactive Threads for Linux, 
Carlos discloses the system further comprising a subsystem whereby a synthetic 
instruction for determining when a spin lock acquisition has failed is trapped and 
processed (e.g., Sec. 2 - Related Works, 2 nd Para - in this model each user 
thread is associated to a virtual processor, an abstraction of a physical processor 
dedicated to only one activity. The kernel is able to change the number of virtual 
processors during the program execution, besides the kernel can communicate 
with the user level scheduler by means of a notification system..; Sub-sec. of 
"Virtual Processors"; Sec. 2 - Related Works, sub-sec. of "Synchronization", 1 st 
Para - 2 nd Para - spin locks and FIFO locks; a spin lock is a binary semaphore; 
the acquisition of the spin lock is based in a busy-wait cycle; the primitives in the 
API to manipulate the FIFO locks are: uklockQ, uk_trylock(), and uk_unlock(), 
with a similar meaning as the primitives explained above for the spin locks) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Carlos into the 
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Robin- Bennett's system to further provide the system further comprising a 
subsystem whereby a synthetic instruction for determining when a spin lock 
acquisition has failed is trapped and processed in Robin-Bennett system. 

The motivation is that it would further enhance the Robin-Bennett's system 
by taking, advancing and/or incorporating Carlos's system which offers significant 
advantages that a new general purpose model of user-kernel threads for Linux 
with excellent performance and scalability for as once suggested by Carlos (e.g., 
Abstract) 

69. As to claim 53 (Previously Presented) (incorporating the rejection in claim 
52), Robin and Bennett do not disclose the computer-readable instructions 
further comprising instructions whereby at least one multi-processor spin lock 
instruction in the guest operating system is supplemented with a synthetic 
instruction (e.g., VMSPLAF) for determining when a spin lock acquisition has 
failed. 

However, in an analogous art of User-Kernel Reactive Threads for Linux, 
Carlos discloses the computer-readable instructions further comprising 
instructions whereby at least one multi-processor spin lock instruction in the 
guest operating system is supplemented with a synthetic instruction (e.g., 
VMSPLAF) for determining when a spin lock acquisition has failed (e.g., Sec. 2 - 
Related Works, 2 nd Para - in this model each user thread is associated to a 
virtual processor, an abstraction of a physical processor dedicated to only one 
activity. The kernel is able to change the number of virtual processors during the 
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program execution, besides the kernel can communicate with the user level 
scheduler by means of a notification system..; Sub-sec. of "Virtual Processors"; 
Sec. 2 - Related Works, sub-sec. of "Synchronization", 1 st Para - 2 nd Para - spin 
locks and FIFO locks; a spin lock is a binary semaphore; the acquisition of the 
spin lock is based in a busy-wait cycle; the primitives in the API to manipulate the 
FIFO locks are: ukJockQ, uk_trylock(), and uk_unlock(), with a similar meaning 
as the primitives explained above for the spin locks) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Carlos into the 
Robin-Bennett's system to further provide the computer-readable instructions 
further comprising instructions whereby at least one multi-processor spin lock 
instruction in the guest operating system is supplemented with a synthetic 
instruction (e.g., VMSPLAF) for determining when a spin lock acquisition has 
failed in Robin-Bennett system. 

The motivation is that it would further enhance the Robin-Bennett's system 
by taking, advancing and/or incorporating Carlos's system which offers significant 
advantages that a new general purpose model of user-kernel threads for Linux 
with excellent performance and scalability for as once suggested by Carlos (e.g., 
Abstract) 

70. Claims 6, 9, 24 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Robin in view of Devine and Bennett and further in view of Cota-Robles et 
al. (Pat. No. US 7,191,440 B2) (hereinafter 'Cota-Robles') 
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71 . As to claim 6 (Currently Amended) (incorporating the rejection in claim 3), 
Robin, Devine, and Bennett do not disclose the method wherein at least one 
synthetic instruction of said synthetic instruction has no corollary to an existing 
x86 instruction. 

However, in an analogous art of tracking operating system process and 
thread execution and virtual machine execution in hardware or in a virtual 
machine monitor, Cota-Robles discloses the method wherein at least one 
synthetic instruction of said synthetic instruction has no corollary to an existing 
x86 instruction (e.g., Col. 6, Lines 9-14; Col. 9, Lines 49-55) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Cota-Robles into 
the Robin-Devine-Bennett's system to further provide the method wherein at 
least one synthetic instruction of said synthetic instruction has no corollary to an 
existing x86 instruction in Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating Cota-Robles' system which 
offers significant advantages that the virtual machine monitor derives scheduling 
information from the transitions to enable a virtual machine system to guarantee 
adequate scheduling quality of service to real-time applications executing in 
virtual machines that contain both real-time and non-real-time applications; a 
parent virtual machine monitor in a recursive virtualization system can use the 
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scheduling information to schedule a child virtual machine monitor that controls 
multiple virtual machines as once suggested by Cota-Robles (e.g., Abstract) 

72. As to claim 9 (original) (incorporating the rejection in claim 3), Robin, 
Devine, and Bennett do not disclose the method wherein, for an instruction that is 
replaced with a synthetic instruction, the synthetic instruction is semantically 
similar to the instruction that is being replaced. 

However, in an analogous art of tracking operating system process and 
thread execution and virtual machine execution in hardware or in a virtual 
machine monitor, Cota-Robles discloses the method wherein, for an instruction 
that is replaced with a synthetic instruction, the synthetic instruction is 
semantically similar to the instruction that is being replaced (e.g., Col. 6, Lines 9- 
14; Col. 9, Lines 49-55) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Cota-Robles into 
the Robin-Devine-Bennett's system to further provide the method wherein, for an 
instruction that is replaced with a synthetic instruction, the synthetic instruction is 
semantically similar to the instruction that is being replaced in Robin-Devine- 
Bennett system. 

The motivation is that it would further enhance the Robin-Devine- 
Bennett's system by taking, advancing and/or incorporating Cota-Robles' system 
which offers significant advantages that the virtual machine monitor derives 
scheduling information from the transitions to enable a virtual machine system to 
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guarantee adequate scheduling quality of service to real-time applications 
executing in virtual machines that contain both real-time and non-real-time 
applications; a parent virtual machine monitor in a recursive virtual ization system 
can use the scheduling information to schedule a child virtual machine monitor 
that controls multiple virtual machines as once suggested by Cota-Robles (e.g., 
Abstract) 

73. As to claim 24 (Currently Amended) (incorporating the rejection in claim 
3), Robin, Devine, and Bennett do not disclose the method wherein a synthetic 
instruction for halting the processor can be executed as user-level guest code. 

However, in an analogous art of tracking operating system process and 
thread execution and virtual machine execution in hardware or in a virtual 
machine monitor, Cota-Robles discloses the method wherein a synthetic 
instruction for halting the processor can be executed as user-level guest code 
(e.g., Col. 6, Lines 9-14 - the VMM can also detect the frequency with which a 
guest OS enters and idle loop, i.e., has no useful work to do by detecting halt 
instructions; because the VMM detects process and thread switches at the 
operating system and application levels, it can calculate its scheduling for a VM 
at granularities beneath the whole VM; Col. 9, Lines 49-55; Col. 11, Lines 44-48 
- the parent VMM would still track halt instructions as well, but the idle detector 
would now receive idle indications at, for example, the granularity of VMs of the 
child VMM (i.e., VMs inside a VM) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Cota-Robles into 
the Robin-Devine-Bennett's system to further provide the method wherein a 
synthetic instruction for halting the processor can be executed as user-level 
guest code in the Robin-Devine-Bennett system. 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating Cota-Robles' system which 
offers significant advantages that the virtual machine monitor derives scheduling 
information from the transitions to enable a virtual machine system to guarantee 
adequate scheduling quality of service to real-time applications executing in 
virtual machines that contain both real-time and non-real-time applications; a 
parent virtual machine monitor in a recursive virtualization system can use the 
scheduling information to schedule a child virtual machine monitor that controls 
multiple virtual machines as once suggested by Cota-Robles (e.g., Abstract) 

74. Claim 40 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Bennett and further in view of Cota-Robles 

75. As to claim 40 (Currently Amended) (incorporating the rejection in claim 
29), Robin and Bennett do not disclose the system further comprising a 
subsystem for processing a synthetic instruction for halting the processor can be 
executed as user-level guest code. 
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However, in an analogous art of tracking operating system process and 
thread execution and virtual machine execution in hardware or in a virtual 
machine monitor, Cota-Robles discloses the system further comprising a 
subsystem for processing a synthetic instruction for halting the processor can be 
executed as user-level guest code (e.g., Col. 6, Lines 9-14 - the VMM can also 
detect the frequency with which a guest OS enters and idle loop, i.e., has no 
useful work to do by detecting halt instructions; because the VMM detects 
process and thread switches at the operating system and application levels, it 
can calculate its scheduling for a VM at granularities beneath the whole VM; Col. 
9, Lines 49-55; Col. 1 1 , Lines 44-48 - the parent VMM would still track halt 
instructions as well, but the idle detector would now receive idle indications at, for 
example, the granularity of VMs of the child VMM (i.e., VMs inside a VM) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Cota-Robles into 
the Robin-Bennett's system to further provide the system comprising a 
subsystem for processing a synthetic instruction for halting the processor can be 
executed as user-level guest code in the Robin-Bennett system. 

The motivation is that it would further enhance the Robin-Bennett's system 
by taking, advancing and/or incorporating Cota-Robles' system which offers 
significant advantages that the virtual machine monitor derives scheduling 
information from the transitions to enable a virtual machine system to guarantee 
adequate scheduling quality of service to real-time applications executing in 
virtual machines that contain both real-time and non-real-time applications; a 
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parent virtual machine monitor in a recursive virtualization system can use the 
scheduling information to schedule a child virtual machine monitor that controls 
multiple virtual machines as once suggested by Cota-Robles (e.g., Abstract) 

76. Claim 49 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Bennett and V86 and further in view of Carlos. 

77. As to claim 49 (original) (incorporating the rejection in claim 46), Robin, 
Bennett and V86 do not disclose the system wherein said synthetic instructions 
further comprise a synthetic instruction for determining when a spin lock 
acquisition has failed is trapped and processed. 

However, in an analogous art of User-Kernel Reactive Threads for Linux, 
Carlos discloses the system wherein said synthetic instructions further comprise 
a synthetic instruction for determining when a spin lock acquisition has failed is 
trapped and processed (e.g., Sec. 2 - Related Works, 2 nd Para - in this model 
each user thread is associated to a virtual processor, an abstraction of a physical 
processor dedicated to only one activity. The kernel is able to change the number 
of virtual processors during the program execution, besides the kernel can 
communicate with the user level scheduler by means of a notification system..; 
Sub-sec. of "Virtual Processors"; Sec. 2 - Related Works, sub-sec. of 
"Synchronization", 1 st Para - 2 nd Para - spin locks and FIFO locks; a spin lock is 
a binary semaphore; the acquisition of the spin lock is based in a busy-wait cycle; 
the primitives in the API to manipulate the FIFO locks are: uklockQ, uk_trylock(), 
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and uk_unlock(), with a similar meaning as the primitives explained above for the 
spin locks) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Carlos into the 
Robin-Bennett-V86's system to further provide the system wherein said synthetic 
instructions further comprise a synthetic instruction for determining when a spin 
lock acquisition has failed is trapped and processed in the Robin-Bennett-V86 
system. 

The motivation is that it would further enhance the Robin-Bennett-V86's 
system by taking, advancing and/or incorporating Carlos's system which offers 
significant advantages that a new general purpose model of user-kernel threads 
for Linux with excellent performance and scalability for as once suggested by 
Carlos (e.g., Abstract) 

78. Claim 50 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Bennett and V86 and further in view of Lawton. 

79. As to claim 50 (Currently Amended) (incorporating the rejection in claim 
46), Robin, Bennett and V86 do not disclose the system wherein said synthetic 
instructions further comprise a synthetic instruction for returning a value 
representing an identity for the central processing unit. 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses the system wherein said synthetic instructions 
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further comprise a synthetic instruction for returning a value representing an 
identity for the central processing unit (e.g., P. 2, Lines 45-47 - information of the 
host processor as returned by the CUPID; P. 17, Lines 729-740 - set the guest 
CUPID info.; P. 19, Lines 832-835 - a pointer to the guest CPU state as passed 
from host-user space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization 
match; P. 26, Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the 
monitor stack; P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin-Bennett-V86's system to further provide the system wherein said synthetic 
instructions further comprise a synthetic instruction for returning a value 
representing an identity for the central processing unit in Robin-Bennett-V86 
system. 

The motivation is that it would further enhance the Robin-Bennett-V86's 
system by taking, advancing and/or incorporating Lawton's system which 
contains the top-level monitor accessible from the host space (kernel 
independent code) as once suggested by Lawton (e.g., P. 1, Lines 5-6) 

80. Claim 66 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Lawton, Carlos and further in view of V86. 



81 . As to claim 66 (Currently Amended), Robin discloses a method for 
optimizing a guest operating system to improve processor virtualization when 
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executing on x86 processor architectures and their equivalents, including but not 
limited to the IA32 architecture, said method comprising: 
• removing, replacing, or supplementing instances of one or more of the 
following predefined instructions in the guest operating system: PUSH CS, 
PUSH SS (e.g., P. 24, Sec. 3 - PUSH Instruction, Lines 1-5 - this can not be 
allowed because bits 0 and 1 of the CS and SS register contain the CPL of 
the current executing task), MOV from SS (P. 26, Sec. 5 - STR Instruction, 2 nd 
Para. - this is a problem because the CS and SS registers both contain the 
CPL in bits 0 and 1 . therefore, a task could store the CS or SS in a general- 
purpose register and examine the contents of that register to find that is not 
operating at the correct privilege level), CALLF (P. 24, Sec. 4 - CALL, JMP, 
INT n, RET Instructions, 1 st Para - task switches and far calls to different 
privilege levels are problems because they involve the CPL, DPL, and RPL of 
the Intel™ protection system), VERR, VERW, and LAR (P. 23, Sec. 1 - LAR, 
LSL, VERR, VERW Instructions, the LAR instruction loads access rights from 
a segment descriptor into a general purpose register; the VERR and VERW 
instructions verify whether a code or data segment is readable or writable 
from the current privilege level. The problem with these instructions is that 
they all perform the following check during their execution: (CPL > DPL) or 
(RPL > DPL); this conditional checks to ensure that the current privilege level 
and the requested privilege level are both greater than the descriptor privilege 
level. This is a problem because a VM normally does not execute at the 
highest CPL); 
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• replacing SGDT instructions in the guest operating system with synthetic 
instructions for storing a current GDT base and length to EAX; 

• replacing SLDT instructions in the guest operating system with synthetic 
instructions for storing a current LDT selector to EAX; replacing SIDT 
instructions in the guest operating system with synthetic instructions for 
storing a current IDT base and length to EAX (P. 19-20, Sec. 1 - SGDT, 
SIDT, and SLDT Instructions, 1 st Para. - 2 nd Para., the GDT and LDT contain 
segment descriptors that provide the base address, access rights, type, 
length, and usage information for each segment; the interrupt descriptor table 
(IDT) is similar to the GDT and LDT, but it holds gate descriptors that provide 
access to interrupt and exception handlers; All three of these instructions 
(SGDT, SLDT, SIDT) store a special register value into some location. The 
SGDT instruction stores the contents of GDTR in a 6-byte memory location; 
the SLDT instruction stores the segment selector from the LDTR in a 16- or 
32-bit general-purpose register or memory location; The SIDT instruction 
stores the contents of IDTR in a 6-byte memory location; these instructions 
are normally only used by operating systems but are not privileged in the 
Intel™ architecture. Since the Intel™ processor only has one LDTR, IDTR, 
and GDTR, a problem arises when multiple operating systems try to use the 
same registers. If an OS in a VM uses SGDT, SLDT, or SIDT to reference 
the contents of the IDTR, LDTR, or GDTR, the register contents that are 
applicable to the host OS or Type I VMM will be given. This could cause a 
problem if an operating system of a virtual machine (VMOS) tries to use these 
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values for its own operations since they are what the VMOS expect. 
Therefore, a Type 1 VMM or Type II VMM must provide each VM with its own 
virtual set of IDTR, LDTR, and GDTR registers); 

• replacing STR instructions in the guest operating system with synthetic 
instructions for storing the current TR selector to EAX (P. 26, Sec. 5 - 
STR Instruction, 1 st Para. - this instruction prevents virtualization because 
it allows a task to examine its requested privilege level (RPL). Every 
segment selector contains an index into the GDT or LDT, a table indicator, 
and an RPL. The RPL is represented by bit 0 and bit 1 of the segment 
selectors. This is a problem because a VM does not execute at the 
highest CPL or RPL (RPL = 0), but a RPL = 3. However, most operating 
systems assume that they are operating at the highest privilege level and 
that they can access any segment descriptor. Therefore, if a VM running 
at a CPL and RPL of 3 uses the STR to store the contents of the task 
register and then examines the information, it will find that it is not running 
at the privilege level at which it expects to run); 
Robin does not disclose replacing CPUID instructions in the guest 

operating system with synthetic instructions that reads virtualized CPUID 

information. 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Lawton discloses replacing CPUID instructions in the guest 
operating system with synthetic instructions that reads virtualized CPUID 
information (e.g., P. 2, Lines 45-47 - information of the host processor as 
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returned by the CUPID; P. 17, Lines 729-740 - set the guest CUPID info.; P. 19, 
Lines 832-835 - a pointer to the guest CPU state as passed from host-user 
space; P. 22, Lines 968-988 - CPUID emulation vs. virtualization match; P. 26, 
Lines 1 1 68-1 1 76 - a pointer to the guest CPU state saved on the monitor stack; 
P. 28, Lines 1246-1259; P. 35, Lines 1571-1572) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Lawton into the 
Robin's system to further provide replacing CPUID instructions in the guest 
operating system with synthetic instructions that reads virtualized CPUID 
information in Robin system. 

The motivation is that it would further enhance the Robin's system by 
taking, advancing and/or incorporating Lawton's system which contains the top- 
level monitor accessible from the host space (kernel independent code) as once 
suggested by Lawton (e.g., P. 1 , Lines 5-6) 

Further Robin and Lawton do not disclose supplementing spin lock 
instructions in the guest operating system with synthetic instructions (e.g., 
VMSPLAF) for determining when a spin lock acquisition has failed. 

However, in an analogous art of User-Kernel Reactive Threads for Linux, 
Carlos discloses supplementing spin lock instructions in the guest operating 
system with synthetic instructions for determining when a spin lock acquisition 
has failed (e.g., Sec. 2 - Related Works, 2 nd Para - in this model each user 
thread is associated to a virtual processor, an abstraction of a physical processor 
dedicated to only one activity. The kernel is able to change the number of virtual 
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processors during the program execution, besides the kernel can communicate 
with the user level scheduler by means of a notification system..; Sub-sec. of 
"Virtual Processors"; Sec. 2 - Related Works, sub-sec. of "Synchronization", 1 st 
Para - 2 nd Para - spin locks and FIFO locks; a spin lock is a binary semaphore; 
the acquisition of the spin lock is based in a busy-wait cycle; the primitives in the 
API to manipulate the FIFO locks are: uk_lock(), uk_trylock(), and uk_unlock(), 
with a similar meaning as the primitives explained above for the spin locks). 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Carlos into the 
Robin-Lawton's system to further provide the method wherein at least one multi- 
processor spin lock instruction in the guest operating system is supplemented 
with a synthetic instruction for determining when a spin lock acquisition has failed 
in Robin-Lawton system. 

The motivation is that it would further enhance the Robin-Lawton's system 
by taking, advancing and/or incorporating Carlos's system which offers significant 
advantages that a new general purpose model of user-kernel threads for Linux 
with excellent performance and scalability for as once suggested by Carlos (e.g., 
Abstract) 

Furthermore Robin, Lawton and Carlos do not disclose replacing 
PUSHF(D) instructions in the guest operating system with synthetic instructions 
for pushing IF onto a stack; replacing POPF(D) instructions in the guest 
operating system with synthetic instructions for popping IF off of a stack; 
replacing CLI instructions in the guest operating system with synthetic 
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instructions for clearing a virtualized IF; replacing STI instructions in the guest 
operating system with synthetic instructions for setting a virtualized IF. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses 
replacing PUSHF(D) instructions in the guest operating system with synthetic 
instructions for pushing IF onto a stack; replacing POPF(D) instructions in the 
guest operating system with synthetic instructions for popping IF off of a stack 
(e.g., PP. 10-11, "Additional Sensitive Instructions", PUSHF- Push Flags, Sec. 
15.4.2 "Virtualizing the Interrupt-Enable Flag", 1 st Para); replacing CLI 
instructions in the guest operating system with synthetic instructions for clearing 
a virtualized IF (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - Clear 
Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, "Virtualizing 
the Interrupt-Enable Flag", 1 st Para - 2 nd Para); replacing STI instructions in the 
guest operating system with synthetic instructions for setting a virtualized IF (e.g., 
PP. 10-11, "Additional Sensitive Instructions", CLI - Clear Interrupt-Enable Flag; 
STI - Set Interrupt-Enable Flag; PP. 11-12, "Virtualizing the Interrupt-Enable 
Flag", 1 st Para -2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Lawton-Carlos' system to further replacing PUSHF(D) instructions in the guest 
operating system with synthetic instructions for pushing IF onto a stack; replacing 
POPF(D) instructions in the guest operating system with synthetic instructions for 
popping IF off of a stack; replacing CLI instructions in the guest operating system 
with synthetic instructions for clearing a virtualized IF; replacing STI instructions 
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in the guest operating system with synthetic instructions for setting a virtualized 
IF in Robin-Lawton-Carlos system. 

The motivation is that it would further enhance the Robin-Lawton-Carlos' 
system by taking, advancing and/or incorporating V86's system which offers 
significant advantages for forming a "virtual machine" with which to execute an 
8086 program; a complete virtual machine consists not only of 80386 hardware 
but also of systems software; thus, the emulation of an 8086 is the result of 
cooperation between hardware and software as once suggested by V86 (e.g., P. 
1, 1 st Para) 

82. Claim 10 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Robin in view of Devine, Bennett and A. Tamches {Fine-Grained Dynamic 
Instrumentation of Commodity Operation System, May, 2001, University of 
Wisconsin - Madison) (hereinafter Tamches') 

83. As to claim 10 (original) (incorporating the rejection in claim 9), Robin, 
Devine, and Bennett do not disclose the method wherein an instruction of less 
than five bytes in length is replaced with a synthetic instruction of at least five 
bytes in length (e.g., to facilitate patching) 

However, in an analogous art of exploiting reflection in mobile computing 
middleware, Tamches discloses the method wherein an instruction of less than 
five bytes in length is replaced with a synthetic instruction of at least five bytes in 
length (e.g., to facilitate patching) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of Tamches into the 
Robin-Devine-Bennett's system to further provide the method wherein an 
instruction of less than five bytes in length is replaced with a synthetic instruction 
of at least five bytes in length (e.g., to facilitate patching) in Robin-Devine- 
Bennett system (e.g., Sec. 4.6.1 - Splicing on Architectures Having Variable 
Length Instructions, 1 st Para) 

The motivation is that it would further enhance the Robin-Devine-Bennett's 
system by taking, advancing and/or incorporating Tamches's system which offers 
significant advantages for dynamic (runOtime) kernel instrumentation and its 
applications in the areas of kernel profiling and code evolution as once 
suggested by Tamches (Abstract, 1 st Para) 

84. Claims 11-12 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Robin in view of Devine, Bennett and Tamches and further in view of V86. 

85. As to claim 11 (Currently Amended) (incorporating the rejection in claim 
10), Robin, Devine, Bennett and Tamches do not disclose the method wherein 
an STI instruction is replaced with a synthetic instruction that is at least five bytes 
long. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
method wherein an STI instruction is replaced with a synthetic instruction that is 
at least five bytes long (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
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Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 

Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine- Bennett -Tamches's system to further provide the method wherein an 
STI instruction is replaced with a synthetic instruction that is at least five bytes 
long (e.g., VMSTI) in Robin-Devine- Bennett -Tamches system. 

The motivation is that it would further enhance the Robin-Devine- Bennett 
-Tamches's system by taking, advancing and/or incorporating V86's system 
which offers significant advantages for forming a "virtual machine" with which to 
execute an 8086 program; a complete virtual machine consists not only of 80386 
hardware but also of systems software; thus, the emulation of an 8086 is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 

86. As to claim 12 (Currently Amended) (incorporating the rejection in claim 
10), Robin, Devine and Tamches do not disclose the method wherein a CLI 
instruction is replaced with a synthetic instruction that is at least five bytes long. 

However, in an analogous art of Virtual 8088 Mode, V86 discloses the 
method wherein a CLI instruction is replaced with a synthetic instruction that is at 
least five bytes long (e.g., PP. 10-11, "Additional Sensitive Instructions", CLI - 
Clear Interrupt-Enable Flag; STI - Set Interrupt-Enable Flag; PP. 11-12, 
"Virtualizing the Interrupt-Enable Flag", 1 st Para - 2 nd Para) 
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Therefore, it would have been obvious to one of ordinary skill in the art, at 
the time the invention was made to combine the teachings of V86 into the Robin- 
Devine- Bennett -Tamches's system to further provide the method wherein a CLI 
instruction is replaced with a synthetic instruction that is at least five bytes long 
(e.g., VMCLI) in Robin-Devine- Bennett -Tamches system. 

The motivation is that it would further enhance the Robin-Devine- Bennett 
-Tamches's system by taking, advancing and/or incorporating V86's system 
which offers significant advantages for forming a "virtual machine" with which to 
execute an 8086 program; a complete virtual machine consists not only of 80386 
hardware but also of systems software; thus, the emulation of an 8086 is the 
result of cooperation between hardware and software as once suggested by V86 
(e.g., P. 1, 1 st Para) 



Allowable Subject Matter 

87. Claims 27, 43, 51 and 64 are objected to as being dependent upon a 
rejected base claim, but would be allowable if rewritten to overcome the 
rejections 35 U.S.C 101 and/or 35 U.S.C. 102(a) and/or 35 U.S.C. 102(b) and/or 
35 U.S.C. 103(a) set forth in this office action and to include all the limitations of 
the base claim and any intervening claims. 
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The following is an examiner's statement of reasons for indicating 
allowable subject matters: 

Regarding claims 27, 43, 51 and 64, prior art of record fails to reasonably 
show or suggest the synthetic instruction (e.g., VMCPUID) has the hexadecimal 
operation code as "OF C7 C8 01 00". 



Conclusion 

88. Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Ben C. Wang whose telephone number is 
571-270-1240. The examiner can normally be reached on Monday - Friday, 8:00 
a.m. - 5:00 p.m., EST. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Tuan Q. Dam can be reached on 571-272-3695. The fax 
phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). If you would like assistance from a USPTO Customer Service 
Representative or access to the automated information system, call 800-786- 
9199 (IN USA OR CANADA) or 571-272-1000. 
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